[THIN] Re: Prevent users from seeing
- From: Jeremy Saunders <jeremy.saunders@xxxxxxxxxxx>
- To: thin@xxxxxxxxxxxxx
- Date: Tue, 30 Jan 2007 19:02:39 +0900
Hi Doug,
In our cleanup script we tend to move them to a IT Tools or Information
Systems folder, depending on what the customer prefers. Here is an extract
from the cleanup script. Watch for line wrap.
----------start of script----------------
SET ITToolsFolder=IT Tools
::SET ITToolsFolder=Information Systems
IF NOT EXIST "%ALLUSERSPROFILE%\Start Menu\Programs\%ITToolsFolder% MD
"%ALLUSERSPROFILE%\Start Menu\Programs\%ITToolsFolder%
XCOPY /I /Q /K /O /Y "%ALLUSERSPROFILE%\Start Menu\Programs\Administrative
Tools" "%ALLUSERSPROFILE%\Start
Menu\Programs\%ITToolsFolder%\Administrative Tools"
RMDIR /S /Q "%ALLUSERSPROFILE%\Start Menu\Programs\Administrative Tools"
----------end of script----------------
Then you can either set permissions via cacls, xcacls, or a group policy to
prevent users from accessing these tools.
Cheers.
Kind regards,
Jeremy Saunders
Senior Technical Specialist
Infrastructure Technology Services
(ITS) & Cerulean
Global Technology Services (GTS)
IBM Australia
Level 1, 1060 Hay Street
West Perth WA 6005
Postal: PO Box 525, West Perth WA
6872
Visit us at
http://www.ibm.com/services/au/its
P: +61 8 9261 8412 F: +61 8 9261 8486
P: (Reception) +61 8 9261 8420 E-mail:
M: TBA jeremy.saunders@xxxxxxxxxxx
"Jim Kenzig
ThinHelp.com"
<jkenzig@xxxxxxxx To
m> thin@xxxxxxxxxxxxx
Sent by: cc
thin-bounce@freel
ists.org Subject
[THIN] Re: Prevent users from
seeing
30/01/2007 08:52
AM
Please respond to
thin@xxxxxxxxxxxx
g
Copy the tools into the admin profile from the all users profile and then
delete the folder in the all users profile. It will then only show up for
the admin.
JK
On 1/29/07, Stratton, Doug ISMC:EX <Doug.M.Stratton@xxxxxxxxx> wrote:
We have a w2k3 sp1 server.
Users are able to turn on the option to view System Administrator Tools.
In the past somehow we prevented anything from showing up under it.
Now regular users can see all the tools.
Is there GPO to prevent this? Or some other files?
I know we restricted the cpl stuff with gpo.
Regards,
Doug Stratton
Technology Engineering Services, ISM Canada
Together with Shared Services BC
Telephone: 250-704-1861
Fax: 250-704-1889
E-mail: <mailto:stratton@xxxxxxxxxx>
--
Jim Kenzig
Microsoft MVP - Terminal Services
http://www.thinhelp.com
Citrix Technology Professional
Provision Networks VIP
CEO The Kenzig Group
http://www.kenzig.com
Blog: http://www.techblink.com
SBC SITES ONLY GOOGLE SEARCH: http://www.F1U.com
************************************************
For Archives, RSS, to Unsubscribe, Subscribe or
set Digest or Vacation mode use the below link:
//www.freelists.org/list/thin
************************************************
Other related posts:
