|
Posted by Roger Abell [MVP] on May 9, 2006, 3:39 am
Please log in for more thread options
There are a user rights that control logon, local or over the network.
There are also matching policies to deny those user rights.
If you look in the local security policy you will see these under the
security options, user rights.
If you want to control what accounts can log in at the keyboard of
a system you need to control the grant of user right to Log on locally
That is, you need to fully understand what is included by the groups
and/or accounts granted that user right.
If you change the user right to log on locally, if needed, so that it
only includes Users and Administrators then you only need to make
sure that Users and Administrators groups have only the desired
members. For example, you would not want Domain Users or
Interactive or Authenticated Users to be members in Users if you
want to limit what accounts are allowed to login.
> sir
> i have a windows 2000 domain and i wants to restrict a computers on that
> domain to allow only users to login which i wants .
> computer allows only specific user for login pls tell me the soloution .
> thanks
| 
XML Sitemap