How to deny user log on to local computer?

R

Ray at

So, I guess what you're saying is the user knows the local administrator
password or has another account, eh? Delete the user's local account and
change the administator password to something he doesn't know.

Ray at home
 
M

Matjaz Ladava [MVP]

You could use GPO's on OU that holds computer accounts and create a Security
policy defining Log on Locally right which should include only domain
accounts.

--
Regards

Matjaz Ladava, MCSE, MCSA, MCT, MVP
Microsoft MVP - Active Directory
(e-mail address removed), (e-mail address removed)
http://ladava.com
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Deny User Login Rights on DC 5
Domain User can't login unless it has local Administrators right 0
Deny logon locally 1
Merging User Rights Assignments 1
0x80070569: Logon failure: the user has not been granted the requested logon type at this computer. 1
Deny Permissions not effective on child OUs 6
Deny user access to local disk 2
Prevent from Creating Computer Objects 7

Top