Is it possible to restrict the logon on a Server 2003\XPPro domain so that only one user can logon to one specific machine. For instance, the user 'library' can only log into the networked computer called LibraryPC, no other user can login to LibraryPC (unless they use the user name 'library' of course). And, if user 'library' attempts to login to any other PC on the network, there request if rejected. I'm thinking MAC/IP address but I'd be glad of any assistance.
It's simple enough to restrict one user to one machine. Within Active Directory, right click a user and choose 'Properties', select the 'Account' tab, then click the 'Log On To' button and specify your library computer name.
For your remaining users - highlight a selection of users within Active Directory and right click anywhere on your selection. Choose 'Properties', 'Account' tab. Tick 'Computer restrictions' then click the 'Log On To' button. You'll now need to specify every other computer within your network manually. Unfortunately there's no import function, so if you have hundreds of machines it's going to be a boring job, but it'll work! Hope this helps!
yep, I have this set up in our library so only the librarian can log on. 2 seconds ill find the relevent post