Simple way is to restrict any installation by the users. this is easy to do via GP
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Darren Mar-Elia Sent: 28 January 2005 11:08 To: ActiveDir@mail.activedir.org Subject: RE: [ActiveDir] Restricting applications If you can reliably know the drive letters of these removeable devices then you can use Software Restriction Policy path rules to prevent execution of any code from a given path. _____ From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Allan Reynolds Sent: Friday, January 28, 2005 11:03 AM To: ActiveDir@mail.activedir.org Subject: [ActiveDir] Restricting applications Hi, I'm not sure if this is even possible but I saw something saying it should in an article the other day but it gave no specifics. What we are looking to do is give users access to CDROM/Floppy/USB Drives but want the ability to prevent installing or even running applications from these drives. The article seemed to imply that this might be possible using GPO's and I was interested if anyone here knows how this can be achieved or can point me in the general direction of some info that might be able to help me. Cheers Allan _____ DISCLAIMER: The information in this email is confidential and may contain personal views which are not those of Myers Grove School. The contents may not be disclosed or used by anyone other than the addressee. If you are not the addressee, please tell us by using the reply facility in your email software as soon as possible. Myers Grove School cannot accept any responsibility for the accuracy or completeness of this message as it has been transmitted over a public network. If you suspect that the message may have been intercepted or amended please tell us as soon as possible.
<<attachment: winmail.dat>>
