Windows 2000 profiles

[Tom Edelblute]

I would like to test a theory out with the infinite wisdom gathered on
this listserv.

We have a number of user restrictions set in the Windows 2000 server
active directory.  These restrictions keep selected computers from going
out onto the open Internet.  We do this by setting the proxy server to
x.x.x.x and a list of exceptions for our subscription databases.  We
tell our Internet people to go to the computer lab.

The problem is that sometimes we log in and get the desk top we want to
see but none of the security restrictions.  It appears that this happens
when we log several computers in at once.  One of my Systems Specialists
is now telling the Librarians that they have to wait for the computer
they are logging in to come all the way up before they log in the next
one.

We never had this problem with NT.  Is Windows 2000 really that
insecure?  How am I going to sell this to management?  Is there
something else that we are missing that we should be doing?
-- 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Tom Edelblute
Public Access Systems Coordinator
Anaheim Public Library   phone: (714) 765-1759
500 West Broadway        fax:   (714) 765-1730
Anaheim CA 92805         e-mail: thomas at anaheim.lib.ca.us