Free, and probably over-kill (but fairly secure imo): I would create a local system account service executable that only admins can stop/disable. (.Net binary) that restarts upon failure.
It would check group membership once upon login (checks that the current user is in the group list written in some read only location (binary Reg entries with R/W assigned to staff only?)). Upon encountering not in allowed list, Fire method: alert user, logoff user (/f I think for force it's been a while). I have a couple of different windows services already developed and working in a similar vein.(.net) that could be adapted in a straightforward manner. Installutil.exe (from ms, i believe) installs /uninstalls win services. In vs studio to make one from scratch it's a different type of project called "windows service" (imagine that). If you want my source files let me know offline. Lawrence Lawrence Sweet AP III .-|-. SAIT 510 -612-6180 Una mentira dijo a menudo bastante se convierte en la verdad. On Thu, Nov 20, 2014 at 8:41 AM, Richard DESHONG <[email protected]> wrote: > We have a small number of computers that we'd like to restrict to a given > set of students. I am looking for a low maintenance, low cost solution. > > Some details: > There are about 900 students. The list doesn't change much during the > semester. The computers are joined to the campus domain and are being > maintained by CSS. Students currently use their Calnet ID's to log in. > > -- > Richard DeShong, Systems Analyst, Athletic Study Center, U.C.Berkeley > 164 Chavez Student Center, Berkeley, CA, 94720-4220 > 510-642-5123 asc.berkeley.edu > > > ------------------------------------------------------------------------- > The following was automatically added to this message by the list server: > > To learn more about Micronet, including how to subscribe to or unsubscribe > from its mailing list and how to find out about upcoming meetings, please > visit the Micronet Web site: > > http://micronet.berkeley.edu > > Messages you send to this mailing list are public and world-viewable, and > the list's archives can be browsed and searched on the Internet. This > means these messages can be viewed by (among others) your bosses, > prospective employers, and people who have known you in the past. > >
------------------------------------------------------------------------- The following was automatically added to this message by the list server: To learn more about Micronet, including how to subscribe to or unsubscribe from its mailing list and how to find out about upcoming meetings, please visit the Micronet Web site: http://micronet.berkeley.edu Messages you send to this mailing list are public and world-viewable, and the list's archives can be browsed and searched on the Internet. This means these messages can be viewed by (among others) your bosses, prospective employers, and people who have known you in the past.
