Preventing browsing

[Nick James]

We have set a policy in gpedit to prevent browsing but
find pupils are still able to browse up to the root. Any
fixes for this?

Do not show last user policy set but does not work

Prevent Ctrl Alt Del set but does not work

All other policies we have set work fine

Much appriciate any input

Nick

 

[Steven Umbach]

It is very difficult to prevent browsing of files/folders. Make sure your ntfs
permissions are restrictive enough to prevent them from doing damage. Assuming
they do not have administrative powers, consider setting the drive/root folder
ntfs permissions for the everyone group to read/list/execute. The security
options you mention that are not working are machine settings. The computers
need to be in the container that the policy is configured for. Check the
effective settings in Local Security Policy for those configurations. You could
configure at the domain level if you want all computers in the domain to have
those security options enforced. -- Steve