Restricting users to use only one computer

  • Thread starter Thread starter Jade
  • Start date Start date
J

Jade

Hi all,

I have a domain on a Windows 2000 Server and many users
having Windows 2000/XP. I need to make a group policy,
probably computer policy, that restricts each computer so
that only ONE SPECIFIC user can login to it.

So, if I have 100 computers and 100 users, each user
should be able to login to his/her computer, but gets
access denied message or something on all other computers
that are not his/her own.

Can someone help me do this? Thank you.
 
You can configure this manually of course on the Account tab of the user in
AD Users & Computers.
Using Group Policy, you can configure the 'log on locally' and 'deny log on
locally' rights but in your case you would need a different GPO for each
computer so it probably wouldn't make the task any easier.
 
Microsoft has a free product called CConnect. It uses a
SQL database to track user logons and you can configure it
to force single logon. We use it to track what user is
logged on to which ws.
 
Back
Top