[THIN] Re: OT: Restricting IE On Terminal Server

  • From: "Selinger, Stephen" <SSelinger@xxxxxxxxx>
  • To: <thin@xxxxxxxxxxxxx>
  • Date: Tue, 30 Dec 2003 12:09:33 -0700

Did you deny the GPO to domain administrators?  If not then it would
make sense that this GPO would apply to your admin account.
 

        -----Original Message-----
        From: thin-bounce@xxxxxxxxxxxxx
[mailto:thin-bounce@xxxxxxxxxxxxx] On Behalf Of Jeff Durbin
        Sent: December 30, 2003 11:59 AM
        To: thin@xxxxxxxxxxxxx
        Subject: [THIN] OT: Restricting IE On Terminal Server
        
        
        
          I want to give a group of users Internet Explorer, but
restrict them to certain web sites. What's the best way to do this? 
          I thought this would be quite straightforward using Content
Advisor via Group Policy. I enabled it for a GPO that applied to a group
of users and restricted them to certain sites. I logged on as on of the
users and did receive the restriction. However, I then noticed that my
administrator's session to the same server was also restricted. I
verified that, even though the Content Advistor settings are listed
under the User Configuration (Windows Settings, Internet Explorer
Maintenance, Security , Security Zones and Content Ratings), any
restriction applied to any user on a server causes those settings to be
applied to *all* users. Any ideas? (I know about kiosk mode, but since
I'm publishing a desktop, they could create a shortcut to Iexplore.exe
in their home drive and get a normal instance of IE, so I want something
a little more sure).
         
        Thanks and Happy New Year,
         
        Jeff Durbin
         
         

Other related posts: