Cross domain access

Toggle sidebar Toggle sidebar
G

geoff

Distinguished
Mar 19, 2001
431
0
18,780
Archived from groups: microsoft.public.win2000.group_policy (More info?)

I have several domains, I.E. HHS.microsoft.com,
Rhs.microsoft.com and add 8 others. In one of the domains
we use one user name and password for ease of use for
these users, mangement nightmare. If someone from another
domain get the user name and password they can log on
using that domain from anyother domain. Is there a way in
GPO to keep them from seeing the other domains while
logging on and have it so they can only log on tho the
domain of where they are at?
Sounds confusing, was trying to give some background. But
the basic question is, can cross domain logging on be
restricted in GPO?
 
Archived from groups: microsoft.public.win2000.group_policy (More info?)

I do not think that it possible to do. That is GPO can not be used to
restrict Trust Relationship between domains.


"Geoff" <anonymous@discussions.microsoft.com> wrote in message
news:2edb01c4289b$62f93e40$a101280a@phx.gbl...
> I have several domains, I.E. HHS.microsoft.com,
> Rhs.microsoft.com and add 8 others. In one of the domains
> we use one user name and password for ease of use for
> these users, mangement nightmare. If someone from another
> domain get the user name and password they can log on
> using that domain from anyother domain. Is there a way in
> GPO to keep them from seeing the other domains while
> logging on and have it so they can only log on tho the
> domain of where they are at?
> Sounds confusing, was trying to give some background. But
> the basic question is, can cross domain logging on be
> restricted in GPO?
 
Archived from groups: microsoft.public.win2000.group_policy (More info?)

The account must exist in each domain. I may have to ask why a trust are
established if you don't trust the trusted users?=)

--
Regards
Christoffer Andersson

No email replies please - reply in the newsgroup
------------------------------------------------
http://www.chrisse.se - Active Directory Tips

"David Mah" <david@m2web.com> skrev i meddelandet
news:%23UlI9tKKEHA.1264@TK2MSFTNGP12.phx.gbl...
> I do not think that it possible to do. That is GPO can not be used to
> restrict Trust Relationship between domains.
>
>
> "Geoff" <anonymous@discussions.microsoft.com> wrote in message
> news:2edb01c4289b$62f93e40$a101280a@phx.gbl...
> > I have several domains, I.E. HHS.microsoft.com,
> > Rhs.microsoft.com and add 8 others. In one of the domains
> > we use one user name and password for ease of use for
> > these users, mangement nightmare. If someone from another
> > domain get the user name and password they can log on
> > using that domain from anyother domain. Is there a way in
> > GPO to keep them from seeing the other domains while
> > logging on and have it so they can only log on tho the
> > domain of where they are at?
> > Sounds confusing, was trying to give some background. But
> > the basic question is, can cross domain logging on be
> > restricted in GPO?
>
>
 
You must log in or register to reply here.

TRENDING THREADS

Latest posts

Moderators online

Share this page

COMPANY
RESOURCES
FOLLOW
Top Bottom