If their is a config.pol file in the \\PDC\x$\WINNT\system32
\repl\import\scripts (where x = SystemDrive) directory on the server
then Windows 98 will automatically download it when you log into the
server. You can set a system policy within the config.pol file that
will configure the client to use USER LEVEL ACCESS CONTROL without
having to set it on every client machine. You can also restrict user
access to this setting so that they can't change it on the client
machine, otherwise they could just change it back and avoid using the
policies that you set up. Microsoft Windows 95 and 98 Resource Kits
have some good information about setting up system policies. The
information is free from Microsoft (if you can beleive that) at the
following URL:
http://msdn.microsoft.com/library/default.asp?
URL=/library/winresource/dnwin95/S642F.htm
---Original Messages---
Date: Tue, 29 Aug 2000 09:04:44 -0700
From: todd sarber <tsarber@...>
Subject: RE: System Policies
Thanks Carlos. They are Win9x clients and I did put config.pol in the
correct dir. on the PDC. But they wont download unless I enable
profiles
on the clients themselves.
-----Original Message-----
From: Carlos A. Quintela [mailto:caq@...]
Sent: Tuesday, August 29, 2000 9:03 AM
To: vantage@egroups.com
Subject: RE: [Vantage] System Policies
Use "System Policy Editor" and create a policy file
(winnt_root\system32\repl\import\scripts\ntconfig.pol) on your domain
controller. (setup replication between DC's if you have multiple DC's)
You
can setup policies for users, groups, or computers. This will allow
you
to
secure stations as much as you want. If the user/group/computer has
already
connected to the domain, then there is already a policy stored locally
on
their workstation. From a domain controller, you can "connect" to
their
workstation's user profile, and make the necessary adjustments. By the
way,
if you have Win95/98 type users, you will need to create a file
"config.pol"
for those computer accounts. Hope this helps.
Adrian Quintela
-----Original Message-----
From: todd sarber [mailto:tsarber@...]
Sent: Tuesday, August 29, 2000 10:16 AM
To: 'vantage@egroups.com'
Subject: [Vantage] System Policies
What is everybody using to secure the desktop as far as locking down
screensavers, loading software, accessing mapped drives, and that kind
of stuff? I have had a little bit of trouble setting up policies. The
only way I got workstations to pull the policy for the users/computers
down from the netlogon share was to turn on profiles on the machines.
Is
that correct? I didnt think I had to do that and I cant find any
documentation that states that I have to turn profiles on. Is there
third party software that anybody would recommend?
TIA
Todd Sarber
Accra-Fab, Inc.
\repl\import\scripts (where x = SystemDrive) directory on the server
then Windows 98 will automatically download it when you log into the
server. You can set a system policy within the config.pol file that
will configure the client to use USER LEVEL ACCESS CONTROL without
having to set it on every client machine. You can also restrict user
access to this setting so that they can't change it on the client
machine, otherwise they could just change it back and avoid using the
policies that you set up. Microsoft Windows 95 and 98 Resource Kits
have some good information about setting up system policies. The
information is free from Microsoft (if you can beleive that) at the
following URL:
http://msdn.microsoft.com/library/default.asp?
URL=/library/winresource/dnwin95/S642F.htm
---Original Messages---
Date: Tue, 29 Aug 2000 09:04:44 -0700
From: todd sarber <tsarber@...>
Subject: RE: System Policies
Thanks Carlos. They are Win9x clients and I did put config.pol in the
correct dir. on the PDC. But they wont download unless I enable
profiles
on the clients themselves.
-----Original Message-----
From: Carlos A. Quintela [mailto:caq@...]
Sent: Tuesday, August 29, 2000 9:03 AM
To: vantage@egroups.com
Subject: RE: [Vantage] System Policies
Use "System Policy Editor" and create a policy file
(winnt_root\system32\repl\import\scripts\ntconfig.pol) on your domain
controller. (setup replication between DC's if you have multiple DC's)
You
can setup policies for users, groups, or computers. This will allow
you
to
secure stations as much as you want. If the user/group/computer has
already
connected to the domain, then there is already a policy stored locally
on
their workstation. From a domain controller, you can "connect" to
their
workstation's user profile, and make the necessary adjustments. By the
way,
if you have Win95/98 type users, you will need to create a file
"config.pol"
for those computer accounts. Hope this helps.
Adrian Quintela
-----Original Message-----
From: todd sarber [mailto:tsarber@...]
Sent: Tuesday, August 29, 2000 10:16 AM
To: 'vantage@egroups.com'
Subject: [Vantage] System Policies
What is everybody using to secure the desktop as far as locking down
screensavers, loading software, accessing mapped drives, and that kind
of stuff? I have had a little bit of trouble setting up policies. The
only way I got workstations to pull the policy for the users/computers
down from the netlogon share was to turn on profiles on the machines.
Is
that correct? I didnt think I had to do that and I cant find any
documentation that states that I have to turn profiles on. Is there
third party software that anybody would recommend?
TIA
Todd Sarber
Accra-Fab, Inc.