Is there anyone who can tell me what I need to do in GP to stop users being able to install software on their desktop clients but give them local admin rights? Thanks for any information.
Is there anyone who can tell me what I need to do in GP to stop users being able to install software on their desktop clients but give them local admin rights? Thanks for any information.
You can use the Group Policy tool in Windows XP to implement software restriction policies. To enable a software restriction policy, use either of the following methods given at this website - http://support.microsoft.com/?kbid=310791
I dont think that there is any such thing as a limited administrator.
Download the Microsoft Shared Computer Toolkit for Windows XP that provides a simple and effective way to defend shared computers from untrusted users and malicious software, restrict untrusted users from system resources, and enhance and simplify the user experience, from here - http://technet.microsoft.com/en-us/l.../cc507835.aspx
The best answer is that you should not make users administrators at all, or Power users, that will sort out everything.
Bookmarks