RE: [ActiveDir] kiosk setting

[Sharif Naser]

Thanks guys,

I will add how to allow only kiosk users to access the kiosk machine.

Regards,

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Brendan Kwolek
Sent: Monday, May 30, 2005 11:26 PM
To: ActiveDir@mail.activedir.org
Subject: Re: [ActiveDir] kiosk setting

Sharif;

We do something very very similar to this...sadly, we do it with reg 
hacks on individual users (since we don't have AD here yet -- stop 
yelling at me, I'm working on it ;))

Currently, we have no context menus, remove file and edit menus from IE, 
cannot create new icons on the desktop, and various other limited things 
to remove items from My Computer and the start menu

Note these are for some clinical workstations -- for other areas where 
we really need to be strict, we've managed to enforce some policies 
(since they're connecting to 2000 Server via Terminal Services)

If you need the reg hacks to at least see which sections of the registry 
need to be modified, let me know and I'll paste them into an email...

Thx

Brendan

(P.S. --> Anyone have suggestions for convincing your boss that AD is a 
necessity other than the usual "this would make our lives so much 
easier, and provide a better experience for our end users?)
(I'm kidding -- we're still working on getting something off the ground 
-- imagine a shop with the foresight to have set up an Enterprise 
Directory more than 5 years ago, but still doesn't use even so much as 
an NT domain for workstation authentication)

Wish us luck!


Sharif Naser wrote:

>Hello exports,
> 
>how can i do the following in group policy:
>
>1. No right click on the desktop.
>2. standard buttons on ie like back (<--) forward(-->), No file menu,edit 
>menu, view menu & tool menu but only help menu.
>3. should not be able to create any document in the desktop.
>4. should not be able to remove any icon from the desktop.
>
>Regards,
>
>
>DISCLAIMER:
>This electronic message transmission contains information from Qatar Steel 
>Company (QASCO)
>which  may be confidential or privileged. The information is intended to be 
>for the use of 
>the individual or entity named above. Be aware that any disclosure,copying, 
>distribution 
>or use of the contents of this information,including attachments, is 
>prohibited without 
>the written consent of Qatar Steel Company (QASCO).
>
>[EMAIL PROTECTED]  
>��V�r�y�&�-��4���i�b��b���/===
>

This email message and any attachments are intended only for the use of the 
individual to which it is addressed, and may contain information that is 
privileged, confidential and exempt from disclosure under applicable law. If 
the recipient of this email is not the intended recipient (or the employee or 
agent responsible for delivering the email to the intended recipient), you are 
hereby notified that any review, dissemination, distribution or copying or 
other use of this message is strictly prohibited. If you have received this 
communication in error, please notify the sender immediately by return email 
and delete this message and attachments from your system. Thank You.



List info   : http://www.activedir.org/List.aspx
List FAQ: http://www.activedir.org/ListFAQ.aspx
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

DISCLAIMER:
This electronic message transmission contains information from Qatar Steel 
Company (QASCO)
which  may be confidential or privileged. The information is intended to be for 
the use of 
the individual or entity named above. Be aware that any disclosure,copying, 
distribution 
or use of the contents of this information,including attachments, is prohibited 
without 
the written consent of Qatar Steel Company (QASCO).

[EMAIL PROTECTED]   ��V�r�y4���i�

Re: [ActiveDir] kiosk setting

[Brendan Kwolek]

Sharif;

We do something very very similar to this...sadly, we do it with reg 
hacks on individual users (since we don't have AD here yet -- stop 
yelling at me, I'm working on it ;))


Currently, we have no context menus, remove file and edit menus from IE, 
cannot create new icons on the desktop, and various other limited things 
to remove items from My Computer and the start menu


Note these are for some clinical workstations -- for other areas where 
we really need to be strict, we've managed to enforce some policies 
(since they're connecting to 2000 Server via Terminal Services)


If you need the reg hacks to at least see which sections of the registry 
need to be modified, let me know and I'll paste them into an email...


Thx

Brendan

(P.S. --> Anyone have suggestions for convincing your boss that AD is a 
necessity other than the usual "this would make our lives so much 
easier, and provide a better experience for our end users?)
(I'm kidding -- we're still working on getting something off the ground 
-- imagine a shop with the foresight to have set up an Enterprise 
Directory more than 5 years ago, but still doesn't use even so much as 
an NT domain for workstation authentication)


Wish us luck!


Sharif Naser wrote:


Hello exports,

how can i do the following in group policy:

1.  No right click on the desktop.
2.  standard buttons on ie like back (<--) forward(-->), No file menu,edit 
menu, view menu & tool menu but only help menu.
3.  should not be able to create any document in the desktop.
4.  should not be able to remove any icon from the desktop.

Regards,


DISCLAIMER:
This electronic message transmission contains information from Qatar Steel 
Company (QASCO)
which  may be confidential or privileged. The information is intended to be for the use of 
the individual or entity named above. Be aware that any disclosure,copying, distribution 
or use of the contents of this information,including attachments, is prohibited without 
the written consent of Qatar Steel Company (QASCO).


[EMAIL PROTECTED]   ��V�r�y�&�-��4���i�b��b���/===



This email message and any attachments are intended only for the use of the 
individual to which it is addressed, and may contain information that is 
privileged, confidential and exempt from disclosure under applicable law. If 
the recipient of this email is not the intended recipient (or the employee or 
agent responsible for delivering the email to the intended recipient), you are 
hereby notified that any review, dissemination, distribution or copying or 
other use of this message is strictly prohibited. If you have received this 
communication in error, please notify the sender immediately by return email 
and delete this message and attachments from your system. Thank You.



List info   : http://www.activedir.org/List.aspx
List FAQ: http://www.activedir.org/ListFAQ.aspx
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] kiosk setting

[Martin Blackstone]

You might want to take a look at this:
http://www.g4tv.com/techtvvault/features/34389/Windows_Tip_Kiosk_Mode_for_IE.html
Or this:
http://support.microsoft.com/?kbid=154780

I'm not sure if doing this via GPO is the best track anyhow since if I was 
building a Kiosk, I wouldn’t want it as part of my domain, but rather a stand 
alone box. 

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Sharif Naser
Sent: Sunday, May 29, 2005 10:31 AM
To: ActiveDir@mail.activedir.org
Subject: [ActiveDir] kiosk setting


Hello exports,
 
how can i do the following in group policy:

1.  No right click on the desktop.
2.  standard buttons on ie like back (<--) forward(-->), No file menu,edit 
menu, view menu & tool menu but only help menu.
3.  should not be able to create any document in the desktop.
4.  should not be able to remove any icon from the desktop.

Regards,


DISCLAIMER:
This electronic message transmission contains information from Qatar Steel 
Company (QASCO) which  may be confidential or privileged. The information is 
intended to be for the use of the individual or entity named above. Be aware 
that any disclosure,copying, distribution or use of the contents of this 
information,including attachments, is prohibited without the written consent of 
Qatar Steel Company (QASCO).

[EMAIL PROTECTED]   Vry&-4ibb
[EMAIL PROTECTED]   ��V�r�y4���i�