Home > IT Answers > DataCenter > Restricted access to win XP professional
Help

Question

  Asked: Dec 28 2004   2:48 AM GMT
  Asked by: BinooDas1234

Restricted access to win XP professional


Physical security, Implementation, Security, System utilities, Security management, Information risk management, Policies, Remote users, Tech support, Help Desk, Third-party services, Servers, Windows, Windows 2000 Server, Networking, Network monitoring, Remote management, Networking Services, DHCP, DNS, Application security, Exchange, Instant Messaging, Encryption, Database, secure coding, Network security, Firewalls, VPN, Intrusion management, Incident response, Forensics, Wireless, Administration, Security Program Management, Compliance, Risk management, CRM, Disaster Recovery, Management, DataCenter, Desktop management applications

I have a small WORKGROUP with windows 2000 server and 5 windows XP professional systems. All computers can read/write each other. Now I want to make one XP client secure/restric access, so that no other computer can access that except only other XP computer. How can I do that?

Please advise.

Thanks in advance!

Subscribe to Alerts! Get questions and answers delivered to your Inbox.


E-mail me updates on this question



   SUBSCRIBE

hidden modal window
Help

Answer Wiki (Improve, edit or add to this answer)

IMPROVE THIS ANSWER
View History
 RATE THIS ANSWER
0
Click to Vote:
  •   0
  •  0
Last Answered: Dec 28 2004  6:16 PM GMT  by BlacKnight




You'd be best off if your Win2K server is upgraded to a domain controller using 'dcpromo' at the command line. Then you would add all of your XP machines to the domain you have created and restrict access on ALL of the machines according to a single set of users which exist within active directory... If you cannot do this, then each XP machine actually controls it's own access locally and users need to be set up on each machine according to the access rights you would like for each workstation. The one thing you do not want to do is to try and use the default Administrator account to login as it is set to have many restrictions automatically. You would be better off creating a standard user on each workstation with Administrative rights by adding it to the administrators group and then using the login on each machine as:

machinenameuser
password

but again, you would have to maintain this on every machine you want to have 'standard' access... It works much easier if you create a domain. Then you just have a user who belongs to the administrators group and he can get into al of the machines as needed... OR when you want to restrict a users access, it is also more easily administered.
  • AddThis Social Bookmark Button

Browse more Questions and Answers on DataCenter, Security and Microsoft Windows.

Looking for relevant DataCenter Whitepapers? Visit the SearchDataCenter.com Research Library.


RSS - Discussions Help

Discuss This Answer


You must be logged-in to discuss a question. Log-in/Register

drorbenyosef  |   Dec 28 2004  6:22PM GMT

you can create a user in your restricted xp and name it “xpcomps” and than grant it any permission that you like, after that enable guest account in that xp, the user that try to connect to that xp in the first time from the network will get a pop up windows that ask for user and password, according to the user that you have create they can now have a access to that resources.
if your goal is to restrict computers based on the network access wich mean’s ip approach you can update the restricted xp to sp2 and with the integrated firewall alow or disallow access from the network - go to the firewall and pass to the exception tab you find there a file and printer sharing line, press the edit tab and then the “change scope” button you find there a “private custom list” button push it and deside who will get into that restricted computer . i hope it help you — dror

 

krooxp  |   Dec 29 2004  6:42AM GMT

Hi. You could also load win xp pro service pack2. This comes with a windows firewall. You then turn on the firewall and create only one exception and that is the other computer.
Ope that works,
Happy new year.