After a lively discussion regarding centralised management of system local accounts (my view is you should be able to admin these in the AD, abd have AD push them out to the affected computer for it to be applied locally), the feature of Restricted Groups came up, which seems to do exactly what I was after, just in a round about manner.
WindowSecurity.com: Using Restricted Groups
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment