How can I use a policy to disable Internet Explorer for one user?

[Dan]

HR has asked me to not allow one user to run Internet
Explorer. Does anyone have a suggestion for the best
method of doing this?

Thanks

 

[Guest]

If you r using a NAT tell IE that there is a proxy server. If u r using proxy turn off the proxy settings. Then Pass a GP that users can't see or go into the connections tab of IE

 

[Steven L Umbach]

If the user is confined to one computer and it would not inconvenience anyone else
using that computer you could disable the default gateway on that computer, which
would block ALL internet access including email. Other possibilities for a computer
are to use a persona firewall, use ipsec filtering, or configure the perimeter
firewall to block outbound access from that users computer based on IP address which
would need to be static. For a user level there is no real good way if you are not
using something like ISA. The one way that may work for Internet Explorer only [but
not other browsers, chat, kazzaa, etc] would be to configure the users computer to
have a bogus proxy server address in IE connections/lan settings. That could even be
done via Group Policy so that the user would be denied access to Internet Explorer at
any domain computer they are on as long as they can not change the settings which
means that those settings would need to be denied to the user. If you go the Group
Policy route, be sure to configure the Group Policy settings at the machine level to
refresh IE settings each time GP is refreshed for computers that user may be
using. --- Steve

 

[jowbob]

Start, run, gpedit, there's group and user policies to define sone of em
should do it back it up before editing.......