Windows 8 Thread, Disable logon for group but allow login for one user in that group in Technical; Originally Posted by themightymrp
I think @ sted is on the right lines with breaking things into smaller groups. Split ...
9th June 2014, 10:21 AM #16
i still think if it really must be one to one bitlocker and pin/usb stick is easiest as long as people turn them off and dont share pins/usb drives and even if they do leave them on person 2 can only use it until its turned off
Originally Posted by themightymrp
9th June 2014, 10:24 AM #17
Unless you can do something fancy using Powershell and a CSV, but otherwise maybe something third party is required?
Originally Posted by william_tropico
I agree it's one major flaw in Active Directory and Microsoft need to add more options in this area.
9th June 2014, 12:12 PM #18
If it is locked to the user you need a machine GPO for each staff user then apply that either with individual ou per laptop or wmi filtering on the host name per policy applied to the laptops.
The administrators group will always be allowed through.
We had to do this for our office machines as the teachers kept logging in and breaking them.
Last edited by SYNACK; 9th June 2014 at 12:14 PM.
By itgeek in forum Windows
Last Post: 1st April 2014, 04:07 PM
By reggiep in forum Windows Server 2008 R2
Last Post: 23rd September 2013, 01:00 PM
By Ste_Harve in forum Windows
Last Post: 22nd October 2012, 01:19 PM
Last Post: 1st July 2009, 10:46 AM
By Blind in forum Windows
Last Post: 7th September 2007, 02:16 PM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)
Tags for this Thread