N
NoNameHere
I would like your thoughts on the following custom user setup
scenario.
System: 1 Windows 2003 Standard Server (AD, File/Print, Exchange)
20 Dell PCs, with 20 more in the next year
The owner of the company is requesting the following type of setup for
his user account:
- a roaming profile
- all financial files on a shared drive
- if the owner's computer is idle for more than 2 minutes, log off the
owner
- password-based encryption system for all files on the share drive
The owner has 2 assistants. Each assistant has the owner's password,
for a bunch of legitimate reasons. So, the owner wants the files on
his share drive to be password-protected, with a password that only
the owner knows. That way, assistants can't access the shared drive,
but can access all other owner documents (medical records, owner
email, memos, etc...) without any restriction.
The owner also is very busy. He gets up from a PC on a moments notice
to go into surgery, or perform an examination. Thus, he wants his PC
to log off after 2 minutes of inactivity. This will ensure that
changes to his profile are saved quickly, so when the owner logs onto
another computer in a different office, his changes are all there.
Any thoughts on how to setup these requirements? My thoughts included
the following:
- setup roaming profile
- setup a single logon restriction on the owner's account
- custom logon script for owner that installs: custom font, a program
that will log off a computer after 2 minutes of inactivity, and a
program for password-based file-based encryption
scenario.
System: 1 Windows 2003 Standard Server (AD, File/Print, Exchange)
20 Dell PCs, with 20 more in the next year
The owner of the company is requesting the following type of setup for
his user account:
- a roaming profile
- all financial files on a shared drive
- if the owner's computer is idle for more than 2 minutes, log off the
owner
- password-based encryption system for all files on the share drive
The owner has 2 assistants. Each assistant has the owner's password,
for a bunch of legitimate reasons. So, the owner wants the files on
his share drive to be password-protected, with a password that only
the owner knows. That way, assistants can't access the shared drive,
but can access all other owner documents (medical records, owner
email, memos, etc...) without any restriction.
The owner also is very busy. He gets up from a PC on a moments notice
to go into surgery, or perform an examination. Thus, he wants his PC
to log off after 2 minutes of inactivity. This will ensure that
changes to his profile are saved quickly, so when the owner logs onto
another computer in a different office, his changes are all there.
Any thoughts on how to setup these requirements? My thoughts included
the following:
- setup roaming profile
- setup a single logon restriction on the owner's account
- custom logon script for owner that installs: custom font, a program
that will log off a computer after 2 minutes of inactivity, and a
program for password-based file-based encryption