disable internet browsing

  • Thread starter Thread starter GeekGirlz
  • Start date Start date
G

GeekGirlz

Is there a way to disable internet browsing using Windows
2000 group policies? I want to apply this to specific
users no matter where they log in.

What is the best way to accomplish this task?
 
In my opinion, the way to do this is by using a firewall that is AD aware
and allows you to control users' access by username. I'd imagine that ISA
Server can do this. www.microsoft.com/isa

Ray at work
 
It seems like the simplest way of accomplishing this is to
do the following, assuming your browser is IE:

Use Windows Explorer to browse to C:\Program
Files\Internet Explorer

Right click on IEXPLORE.EXE, choose 'Properties'

Click on the 'Security' tab

Click on the 'Add...' button, ane add the name of your
NO_BROWSE group (or whatever you called it)

Highlight the NO_BROWSE group in the upper pane

Click on the 'Deny' boxes in the bottom pain, so that
everyone in the NO_BROWSE group is unable to do anything
with IE, include running it!

Anyway, best of luck.

Mike
 
This will just deny access to an application. It will not deny access to
the actual data that you're trying to protect, in this case, the Internet.
A user could still browse using another browser or explorer.exe or telnet or
Outlook, or whatever. The best solution will exist in the "back office"
realm.

Ray at work
 
Hi Ray,

While I agree that your suggestion has the potential for
disabling all access to the outside world via the net, I
guess I was just trying to give a direct answer to their
question.

If they want to truly stop all access via the net, then it
sounds like your suggestion may be the way to go. If they
just want to keep users from using whatever the default
browser is, and users don't have the ability to install
additional browsers (due to additional permission
limitations), then the simple suggestion I provided gives
them the capability they asked about, without having to
purchase/install additional software.

I guess it's all about what the real need is.

Cheers,

Mike

p.s. Ray...do you have any ideas how to fix the drwtsn32
problem I posted a few lines earlier?
 
Back
Top