Hi all
I have a windows server 2003 and 3-4 windows xp professional workstations. I
want user could only logon to the domain controller (windows server 2003) and
couldn't get the logon dialogbox that could choose logon locally to their
PCs. Anybody could help me on this. I thank you.

Nick Sands wrote:
I think the simplest solution for this is not to give them access to
the local PC. How ? simply by not creating a local account for them.

I hope that this is informative !

Thanks
Hussein

You need at least one local account otherwise if the machine can't contact
the doamin, you are up the creek.

However it's simply a matter of ensuring that ordinary users don't know the
local-user password. This should in any case be different from any domain
password.

Hi threre
Thanks for your reply! I thought I could do this by Group policy. I just
don't want the dialog box shows the logon locally option. Is there anyway to
do this by editing the Group policy! Thank you for your time.

Show quoteHide quote

I couldn't see any policy which prohibits a user from logging into the
local machine and I can't see how, then, the admins can loggin
afterwards.

Anyway! I found another policy which will restrict the loggin on the
local machine to some user groups.

Check it :

Local Group policy > Computer configuration > windows settings >
security settings > local policies > users right assignments > log in
localy.


thanks
hussein

Pinging problem from client PCs
Beginner!! In my local network all PCs can use the DSL modem but...
XP Pro can not join domain
password x for read, password y for write
Multicast
12 xp users LAN with router - static IPs better than automatic?
What DNS addres to use on internal network?
Network access/logon to user vanishes and Guest appears in its place
Modem Hijacking?
Router problems