fort78

Thanks very much - worked like a charm!

Sorry for the late reply! I've been away competing in an IT competition :) Thanks very much! Well I plan to do a masters degree in network management and design - I'm doing the first two of the provisional three at my college (Highbury College Portsmouth) because they are both a Cisco and Microsoft acedemy which the local universities are not, after this coming year I shall change to university (probably Portsmouth) to do the final year of my Bsc. Hons and then an additional year for my masters :)

Thanks for the warm welcome :) Hope to become a actively involved member of this (seemingly so far) very useful forum :)

Hi there, Just wanted to introduce myself...My name's Ryan, I'm studying for my degree in computer networking as well as also studying for my CCNA and MCITP accreditations - so far I've completed work on the Windows 7 and Server 2008 Module, next is the AD one... I have experience from working in industry with both Windows Client and Server OS's, and hope you guys can help me furthur that, and I help you if I can too :) Hope you are all having a good day!

Thanks again for the quick response - I'll give it a try and let you know how I get on :)

Ok, I shall give the user rights assignment a go for part of it, and the remote for the other - thanks so much for your help :)

Yep, the DC is 2008, and the function level is 2008 as well, Many thanks :)

Hi, Thanks for the quick response! The requirments are basically that no one but Administrators (who of course are allowed to by default), and two other groups are allowed to log on to the server in any capacity, be it physically walking up to it, or through remote. So, if i was to edit the local security policy to allow those - this would work? Many Thanks R Green

I need to stop a specific user from becoming affected by the password complexity requirments of the default domain policy - I know I could put them into a seperate OU, but that isn't a viable option. Is there any way that you guys know of that would allow the rest of the policy to effect them but not the password section? Thanks in advance R Green

I was wondering how I would apply a GPO to every user on my domain except a specific one...for instance, if I was to edit the Default Domain Policy - how to stop it affecting everyone. I know on 2003, I used to just deny the GPO to the specific user - but unsure of how to go about this on 2008? Help much appreciated

I have the answers you want (I think) PM me if you are still interested :)

Hey there, I was wondering what the best way would be to stop users being able to log onto servers (either locally or remotely) - Obviously Domain Admin accounts etc can automatically do this, but I'd like to be able to control who can and who cannot log into the server...would this be a group membership based solution or something similar? Help much appreciated, R Green