software:microsoft:windows:activedirectory
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revision | Last revisionBoth sides next revision | ||
software:microsoft:windows:activedirectory [2022/04/06 04:00] – superwizard | software:microsoft:windows:activedirectory [2022/04/06 04:02] – [Computer login] superwizard | ||
---|---|---|---|
Line 88: | Line 88: | ||
A better way would be to do it in the security policy (secpol.msc) | A better way would be to do it in the security policy (secpol.msc) | ||
- | Security Settings > Local Policies > User Rights Assignments > Allow log on locally. Remove the " | + | Security Settings > Local Policies > User Rights Assignments > **Allow log on locally**.\\ |
+ | Remove the " | ||
+ | add those users you want to allow to log on. | ||
From: https:// | From: https:// | ||
Line 94: | Line 96: | ||
ChristopherO | ChristopherO | ||
Mace | Mace | ||
- | ChristopherO Feb 15, 2012 at 6:54 AM | + | ChristopherO Feb 15, 2012 at 6:54 AM \\ |
You could certainly do this in 2003.\\ | You could certainly do this in 2003.\\ | ||
- | If you want to be granular, you will need to update the Users group on each computer - remove Domain Users and add in the specific accounts/ | + | If you want to be granular, you will need to update the Users group on each computer\\ |
+ | - remove Domain Users and add in the specific accounts/ | ||
+ | If it's going to be the same for a large number of computers (ie, users in the Sales group can log into any computer in the Sales department) you can use Restricted Groups in Group Policy - just remember, with Restricted Groups it will remove ALL other users/ | ||
From: https:// | From: https:// |
software/microsoft/windows/activedirectory.txt · Last modified: 2024/03/02 22:28 by superwizard