Instead of specifying the proxy settings in a GPO, you could point IE at a
Automatic Config script (hosted on a website or file share). You could then
set proxy exclusions on a per domain basis rather than stopping this user
from using the proxy for anything. You could also exclude internal sites if
desired. Here is an example "config.pac" file:
function FindProxyForURL(url,host){
if( isPlainHostName(host)){return ("DIRECT");}
if( host.search("usersbankingsite.com") != -1){return ("DIRECT");}
if( host.search("myinternalwebsites.com") != -1){return ("DIRECT");}
if( host.search("^10.*.*.*") != -1){return ("DIRECT");}
return "PROXY myproxyserver.mycompany.com:8080";
}
Regards
Steve
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Se�n
Sent: 12 November 2004 16:14
To: [EMAIL PROTECTED]
Subject: [ActiveDir] Deny Domain GP to a single user
I've set the proxy settings for the Domain Group policy to the IP address of
an ISA server.
Is there an easy way of bypassing the proxy settings for one user? This
particular user needs direct access to a banking site.
I don't want to (but might end up) creating a new group and putting everyone
but this particular user, then reapplying the proxy settings.
Am using 2000 DCs.
- Se�n Carr
___________________________________________________________
Moving house? Beach bar in Thailand? New Wardrobe? Win 10k with Yahoo! Mail
to make your dream a reality.
Get Yahoo! Mail http://uk.mail.yahoo.com
List info : http://www.activedir.org/mail_list.htm
List FAQ : http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
**********************************************************************
This is a commercial communication from Commerzbank AG.
This communication is confidential and is intended only for the person to
whom it is addressed. If you are not that person you are not permitted to
make use of the information and you are requested to notify
<mailto:[EMAIL PROTECTED]> immediately that you have
received it and then destroy the copy in your possession.
Commerzbank AG may monitor outgoing and incoming e-mails. By replying to
this e-mail you consent to such monitoring. This e-mail message and any
attached files have been scanned for the presence of computer viruses.
However, you are advised that you open attachments at your own risk.
This email was sent either by Commerzbank AG, London Branch, or by
Commerzbank Securities, a division of Commerzbank. Commerzbank AG is a
limited liability company incorporated in the Federal Republic of Germany.
Registered Company Number in England BR001025. Our registered address in
the UK is 23 Austin Friars, London, EC2P 2JD. We are regulated by the
Financial Services Authority for the conduct of investment business in the
UK and we appear on the FSA register under number 124920.
**********************************************************************
List info : http://www.activedir.org/mail_list.htm
List FAQ : http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
