How can I restrict Windows AD logon to a certain group?

windows groups login active-directory

Our organisation has an AD; all users are in the one OU. I administer a section of the users. We have a bunch of computers that I only want to allow logon by users in a particular AD group (i.e. users in my section). How might I go about this?


Solution 1:

Group Policy depends on Active Directory, whether for security or normal policies, and therefore, it is crucial to understand Active Directory and its structure.

I would like you to go through this Microsoft KB article. I hope this will be useful for you, and the link I'm posting is for Windows 2000 as you did not mention for which Windows version you want to restrict.

For sake of time, search for a third party tool, as today there are many third party tools available which are made to manage Active Directory in an easy way.

Related

How bandwidth is allocated to concurrent users?
How are subdomain resolved?
Server recommendation for simple script
certreq.exe unable to to submit Base64 CSR - Invalid Data
Does increasing the journal size improve performance for ext4 filesystems?
Is there software that can help me easily back up my data from Amazon S3 to my premise?
How can I generate Windows Logs for testing purposes?
sleep in upstart script (upstart synchronism)
EC2: Regular performance issues without obvious resource contention
How to convert an rdiff delta file to a regular diff?
Steps to diagnose performance bottlenecks on Mac OS X
IRPStackSize and Accessing Windows 7 Shares from Windows XP clients