RE: [ActiveDir] [Active Dir] Print Screen Policy

Wed, 25 Aug 2004 06:03:12 -0700

Honestly, your first step in this quest is to determine what all you want to change, then determine what registry key manages it and what the setting is to implement the behavior that you want.
 
It exists (the ability to do this) as exhibited by the multitude of language sets that exist for the OS.  It's a matter of:
 
1.  Determining the reg key and setting to affect
2.  Using GP and a script (using reg.exe, vbs, js) or custom reg entries
 
It CAN be done.  Just depends on how hard you want to work at it.  As to the print screen, if someone can find the reg key to disable the CAPS LOCK (yes, it's documented what to change, how to re-assign or disable it), then there is a reg key that can kill the Prt Scrn.  You just need to find the secret.
 

Rick Kingslan  MCSE, MCSA, MCT, CISSP
Microsoft MVP:
Windows Server / Directory Services
Windows Server / Rights Management
Windows Security (Affiliate)
Associate Expert
Expert Zone - www.microsoft.com/windowsxp/expertzone
WebLog - www.msmvps.com/willhack4food
 


From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED]
Sent: Wednesday, August 25, 2004 2:58 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] [Active Dir] Print Screen Policy


Yes, Camera's and phone's with cameras are banned from the site, we will also be making users walk through a memory eraser on the way out of the door! ;>

I do not know of any way to centrally manage keyboard mappings....Any ideas?

Sean



"Grillenmeier, Guido" <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED]

25/08/2004 08:46

Please respond to
[EMAIL PROTECTED]
To
<[EMAIL PROTECTED]>
cc
Subject
RE: [ActiveDir] [Active Dir] Print Screen Policy





maybe you could reconfigure the print-screen button to activate the screensaver or something similar...
 
but they can still use their photo-cameras to capture stuff from the screen... ;-)  you'll never prevent users from stealing data the "simple" way (no matter how much effort you put into Digital Rights Management).
 
/Guido

From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED]
Sent: Wednesday, August 25, 2004 9:37 AM
To: [EMAIL PROTECTED]
Subject: [ActiveDir] [Active Dir] Print Screen Policy


Does anyone know of a way to prevent users from performing print screens via AD policy?

We are setting up a secure network and the only access through from our regular LAN is via terminal sessions,
currently no one can print from these sessions or save anything locally but they can still print screens!

Thanks
Sean

Reply via email to