I have been working on restricting users from logging onto a certain computer. I researched using past TechRepublic and other blogs to help solve this issue. I am testing this using some of the replies I saw from these blogs. So, I created a new OU, put the computer in the OU I want to test with, created and linked its own Group Policy. In this Group Policy, I enabled deny logon locally and specified all the users I want to restrict from logging in. Well, I tested this by using a test user to log on with. It didn’t work. Is it because I logged on locally with this test user in the past on the same machine and have a profile or should the Group Policy that now denies that test user take precedence and deny log on?
Also, I took away security permissions from both the OU and the computer object that might have a group that this test user may have rights to log in with. Does anyone have any suggestions? I have a need to deny a lot of users from certain machines. Any help would be appreciated.
Thank you….