|
Can you please be more specific? You are seeking to allow only one specific user to log on INTERACTIVELY on your kiosk machine??
I think one way would be to give only that user account (and local Admin, of course) the “Allow Logon Locally” user right. This would restrict Interactive logon to only the users specified in this group policy (or local policy):
Computer Configuration\Windows Settings\Security Settings\Local Policies\User Rights Assignment\ Allow log on locally
On XP or 2003, you can log on through Remote Desktop if you have the following User Right (same path as above): \Allow Logon through Terminal Services
I believe that “Remote Desktop Users” has the above right by default.
You could take more drastic steps as well if you’re afraid that the above techniques won’t do the trick (e.g. permissions on C drive, ‘Documents and Settings’, HKU, etc…).
I hope that helped!
Have a great day!
Robert Williams, MCSE NT4/2K/2K3, Security+ Infrastructure Rapid Response Engineer Northeast Region Microsoft Corporation Global Solutions Support Center
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Sharif Naser
Hello experts,
I’m setting a kiosk machine, my question is how do I allow a specific user to login to my domain from only one machine & disallow other users from logging from the same machine.
Regards,
|
- RE: [ActiveDir] how to allow a specific user to ac... Robert Williams \(RRE\)
- RE: [ActiveDir] how to allow a specific user ... Robert Williams \(RRE\)
- RE: [ActiveDir] how to allow a specific user ... Sharif Naser
- Re: [ActiveDir] how to allow a specific u... mike kline
- RE: [ActiveDir] how to allow a specific user ... Sharif Naser
- Re: [ActiveDir] how to allow a specific u... mike kline
- RE: [ActiveDir] how to allow a specific user ... Sharif Naser
