I'm trying to create a policy to limit access to MSN Messenger by creating a "Don't run specified applications" policy (I realise this isn't 100% fool-proof, but it doesn't have to be), but there are some users which are allowed access to the program (these users are in their own security group).
I read elsewhere that by creating the policy, and denying the MSN-allowed access to the registry.pol file, that this would restrict the policy to all other users. Unfortunately, doing this stopped ALL policys from working for the MSN-allowed users.
Is there a way I can restrict MSN access to all except a few specified users? (As I've said above, it doesn't have to be fool-proof - just enough to act as a deterant and stop a regular user from figuring it out!) We are running a SBS 2003 Server, with XP/2000 Workstations.