Is there any way to restrict access to 2003r2 shares based on what computer a user logs into

Is there any way to restrict access to 2003r2 shares based on what computer a user logs into: Posted by MrMiLo@nospam on June 27th, 2006; I have a server farm consisting of all windows 2003 servers with R2

All my workstations are Windows XP professional with SP2

What I would like is to be able to limit my users access to domain shares
(specifically DFS shares) so that these shares are only accessible while
they are logged into and using one of the Terminal Servers.

I do not want these shares accessible from the XP Pro workstations.

I cannot block access to the servers from the XP workstations with firewall
or IPsec as they still need access to sysvol for policies and scripts and
printer services.

Any suggestions no matter how far out would be greatly appreciated

Thanks; Posted by Doug Masters on June 27th, 2006; I haven't tried it, but you can assign "computers" in the share
permissions. You'll have to add them as an "object type", but I don't
see any reason why it wouldn't work.

MrMiLo@nospam wrote:; Posted by MrMiLo@nospam on June 29th, 2006; Doug,

I already gave that a shot by denying permissions based on computer and it
did not seem to have any effect. I did not just try to give computer the
objects permissions as the users belong to security groups which all have
different rights from one another and they all share a farm of Terminal
Servers.

Thanks for the input.

"Doug Masters" <doug.masters@gmail.com> wrote in message
news:1151450612.812047.72400@p79g2000cwp.googlegro ups.com...

Similar Posts

How can I restrict internet access for one user? (Security & Administration) by Maureen
How can I restrict internet access for one user? (Security & Administration) by Maureen
Restrict User Account Access with XP PRO (Help and Support) by Chris
Restrict User Access on NT Domain (Windows NT) by bc
Restrict user access to Internet (Windows NT) by Barbara I.