Step 9.
Click Update at the bottom of the screen after selecting the Where, and
selecting the Logon group and Guest group, but not any User groups or
Normal groups.
Doing this sets up this location to deny users logon access. If a user tries
to logon on the Logon page, rather than them receiving no rights at all,
they will end up with Logon rights again.
This is an interesting concept. Rather than a client receiving no rights at all, the
system tries to hand out logon rights again. This is why you must specify a Logon
group at every location.
C.7
Time-Based Rights
As mentioned earlier, the other complication to the rights is the notion of time-
based validity. This can be achieved by either setting a group to be valid only at
certain times, or by setting a location to be valid only at certain times. These two
settings cause the rights to be handed out in different ways.
C-28
Figure C-19. Location Editor
Rights Tutorial