Locking down XP machines on a peer to peer network

Locking down XP machines on a peer to peer network: Posted by Chris Swinney on January 6th, 2008; Hi,

We have a small XP network on a peer-to-peer basis that is going to be used
as an open access suite. I want to lock down these machines (such as
removing access to the control panel and restricting access to the C drive)
which I thought could be fairly simply done using the Local Computer Policy
via gpedit.msc.

However, I am used to working in a domain environment so being able to apply
different policies to different users or groups. We also want some users
(such as administrators) to be able to log on and access all features. It
seems that if I apply a Local Computer Policy, I cannot differentiate
between users. Is there a way to save a policy file (one with features
turned on, or one with them turned off) so that they can be simply applied
by an administrator, or is there a better way to do this?

In addition, I can remember vaguely that Microsoft used to provide example
settings of Group Policy for machines in certain situations; however, I can't
remember the link to the pages. Does anyone know the whereabouts of these
examples and if they can be applied out of a domain controlled environment?

Many Thanks

Chris; Posted by Lanwench [MVP - Exchange] on January 6th, 2008; Chris Swinney <swin@fab-sas.co.uk> wrote:
Group policy isn't an option if you aren't using AD, and you really don't
want to muck around with a bunch of local policies (it's maddening and you
can all too easily lock your keys in the car, as it were). You're correct
that a local policy applies to all users, anyway.

Check out Windows Steady State for kiosk-type setups, and/or Doug Knox's
Security Console (google for both); Posted by Lanwench [MVP - Exchange] on January 6th, 2008; Chris Swinney <swin@fab-sas.co.uk> wrote:
Group policy isn't an option if you aren't using AD, and you really don't
want to muck around with a bunch of local policies (it's maddening and you
can all too easily lock your keys in the car, as it were). You're correct
that a local policy applies to all users, anyway.

Check out Windows Steady State for kiosk-type setups, and/or Doug Knox's
Security Console (google for both); Posted by Chris Swinney on January 7th, 2008; Thanks,

that stuff looks like it will fit the bill very well.

Chris

"Lanwench [MVP - Exchange]"
<lanwench@heybuddy.donotsendme.unsolicitedmailatya hoo.com> wrote in message
news:eGARt3LUIHA.4476@TK2MSFTNGP06.phx.gbl...; Posted by Chris Swinney on January 7th, 2008; Thanks,

that stuff looks like it will fit the bill very well.

Chris

"Lanwench [MVP - Exchange]"
<lanwench@heybuddy.donotsendme.unsolicitedmailatya hoo.com> wrote in message
news:eGARt3LUIHA.4476@TK2MSFTNGP06.phx.gbl...; Posted by Lanwench [MVP - Exchange] on January 7th, 2008; Chris Swinney <swin@fab-sas.co.uk> wrote:
Glad to help- best o' luck.; Posted by Lanwench [MVP - Exchange] on January 7th, 2008; Chris Swinney <swin@fab-sas.co.uk> wrote:
Glad to help- best o' luck.

Similar Posts

Flakey XP peer to peer network - MSHOME unavailiable - now it is! but cannot access the Internet (Networking) by Asa
how to delete a phantom computer from a peer to peer network (Microsoft Windows) by Alex McFarlane
lost external USB hard drive on peer to peer network (Networking) by vern
Setting up peer-to-peer home network with a wireless & non-wireles (Networking) by Jomama69
E-Mail Sharing on a adhoc peer to peer network (Networking) by kayos