Koozali.org: home of the SME Server
Legacy Forums => Experienced User Forum => Topic started by: Matt on February 26, 2002, 11:43:02 PM
-
Is there any way that I can make it so that no one cas use windows at all with out having there password verified by my SME Server 5.12
-
yes,
you will need to edit the windows policy with poledit
poledit can be found on the win89 cdrom
-
Use NT or Win2k with SME as the domain controller. If local accounts do not exist on the windows boxes, only the administrator or a domain user will be able to log in.
If you use SME as a domain controller, be advised to move the SME\domain users from the local administrators group to the power users group. I would also create an account "root" with the same SME password and put that account in the administrators group. You can then remove administer that box.
Good luck
-
Checkout this reg hack for Windows9x/Me
"Require Validation by Network for Windows Access"
http://www.winguides.com/registry/display.php/130/
-
Thank you for the info. I recall reading that years ago. This would accomplish Matt's goal. Be aware that the system data and files will remain on FAT32 which can be accessable with a simple DOS boot disk.
When this hack is applied, will win9x "cache" the domain login? If a laptop is hacked, can the user log in at home (away from domain) with a "cached" login?
-
You can disable Password caching aswell !
Look at :
Disabled Password Caching (All Versions)
http://www.winguides.com/registry/display.php/124/
-
I overlooked a url:
Disable Caching of Domain Password (All Versions)
http://www.winguides.com/registry/display.php/134/
-
Thanks for the help. I am not concernted about hacking because I alread disabled the ability to boot from a disk and safe mode. Thanx.