We have a Windows 2000 Single Forest/Single Domain/Native Mode
infrastructure. We have over 50 servers (Windows 2000 and Windows 2003). We
are introducing another Windows 2003 server for a special purpose. The users
will come from several OUs (users are associated with their OUs) and will use
Terminal Services to access the server to use a specific application. What
we are wanting to do is:
1. Restrict all users except the domain administrator and local
administrator's desktop.
2. The Users who will login via Terminal Services will only have a blank
screen (no icons,no RUN, No Network icon, etc).
3. As they login we want them the single application to immediately launch.
We downloaded GPMC and installed it on the Windows 2003 server. Question:
We are not very experienced at using Group Policies. We would like to know
what the best approach would be. Should we create a Universal, local or
Domain Group and assign all the users from the various OUs to it THEN
Create/Link a GPO with all the above criteria and filter with the Group?
Next, where do we assign the Policy?
|
Similar Threads
Linear Mode
