Protecting Desktop Icons

[Scott]

How can I stop users from renaming and/or deleting the Shortcut Icons on
Windows 2000 Server and Professional? I have several retailers calling for
support because they cannot run their applications from the desktop.

 

[SaltPeter]

How can I stop users from renaming and/or deleting the Shortcut Icons on
Windows 2000 Server and Professional? I have several retailers calling for
support because they cannot run their applications from the desktop.

--
Thank you,

Scott
(e-mail address removed)

One way would be to convert to the NTFS file system and setting the
appropriate permissions on the desktop objects. This might require a little
testing to allow read + execute but not modify a shortcut by using advanced
NTFS permissions.

Note that shortcuts placed in a container (folder) will inherit the
container's NTFS permissions and this implies that the container itself
might also inherit permissions from a parent folder. You might be forced to
break an NTFS inheritence ladder, copy NTFS permissions over to isolate the
user's desktop folder.

My suggestion to you is to create a syspreped distribution image since you
seem to be distributing a standard desktop.

For the sake of reference:
Default NTFS Permissions in Windows 2000
http://support.microsoft.com:80/support/kb/articles/Q244/6/00.asp

UNDERSTANDING NTFS PERMISSIONS
http://www.windowsitlibrary.com/Content/592/1.html