|
Posted by Steven L Umbach on January 3, 2006, 12:59 pm
Please log in for more thread options
You can restrict access to applications a couple of ways - by NTFS
permissions using principle of least privilege and Software Restriction
Policies for XP Pro/W2003 computer both which can be managed via Group
Policy if need be. If a user does not have execute permissions, either by
explicit user or group membership, to the executable for the application
the user will not be able to run the application. FYI you really are not
talking about "rights" here but instead permissions such as
read/list/execute/write/modify. A user right is a task that the user can do
on the computer such as logon locally. I understand what you mean here but
it will help you in future dialog to try to make the correct distinctions.
Also when you configure permissions try to avoid using deny permissions.
Lack of a permissions is an implicit deny. The links below contain much more
info to help get you started. --- Steve
http://support.microsoft.com/default.aspx?scid=kb;en-us;308418 --- XP NTFS
http://support.microsoft.com/default.aspx?scid=kb;EN-US;308419 --- NTFS
special permissions
http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/rstrplcy.mspx
--- XP Pro Software Restriction Policies
> Hi!
>
> I was just thinking of implementing security rights on individual
> applications installed on client machines. For example a user having
> specific rights should be able to use MSN but others should not be able
> to use it. Like wise I want rights on every application installed e.g.
> MS Word etc. etc. So how can I implement this?
>
> Thanks in advance.
>
> cheers!!!
>
| 
XML Sitemap