Windows Sever 2012 Active Directory Group Policy Help
Hello D3LTA9,
Just to expand on what dzonidev was exampling about, this can be enforced using a GPO and your pre existing organisational units.
I would also like to say in advance I have not personally done this before, however if you run into any problems just let me know and I will try my best to assist you.
The first step would be to create a new GPO this can be called anything you want, however I would suggest something such as "Restrict PC logins (Room10)" etc.
Now create a new security group and add the users you would like to restrict login access to.
Next you want to find the following policy "Computer Configuration > Windows Settings > Security Settings > Local Policies > User Rights Assignment > Deny Login Locally Setting".
On the next screen you should see a new window appear once you open the "Deny Login Locally" policy. You want to tick the define check box and add the security group you created at the start.
Now you can apply the policy to the machines you would like to restrict login access to.
Once the above steps have been completed, remember to either reboot the machine or run "gpupdate /force" to reload the policies. Then it should be ready for testing.
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now