I am working in a school we have 2 ICT labs used from students with their own AD accounts to login. The students have some limitations in fact for security reason they are not able to access to the drive C (to avoid damage).
I would like as primary requirement handle these ICT students giving for one side the full access to C (that is giving al lot of problem) and for the other side have a system that allow me to easy protect and recover the functionality of each pcs in case they mess up somethings.
I would like also Centralize the applications, I mean install programs or update the antivirus directly in one machine ( instead now I am doing one by one). Also ensure the Active Directory log of the students.
The idea is give full access to C and simultaneously have a solution that solves any possible damage to system and centralize the maintenance of the software that they are using.
SOLUTION
I expose below two solutions that came to my mind:
1) I thought to use a system that every time the machines are switched on the operating system is loaded (on the ram) from an image stored on a network server. In doing so any damage/ mess up processed during the exercises are canceled when the machine restart. In this mode I do not even need antivirus (which is giving me a lot of problems with some programs, eg with python >> recently avast delete certain file execution - not even say that he has found a threat -). In this configuration, i think, the problem is keep to update the OS and Antivirus. Also install or uninstall programs on the image.
Do you think will be possible create something like that?
2) I thought also to a terminal server or known as remote desktop. There are alternatives to Microsoft? In this regard I would like to ask some questions. In this configuration, update the antivirus or windows would be simple because I should only act on one machine the TS but I would not be able to limit the manipulations of C or eventually virus attacks which would compromise the entire server.
Are there effective solution to use for my needs??
Thanks
I would like as primary requirement handle these ICT students giving for one side the full access to C (that is giving al lot of problem) and for the other side have a system that allow me to easy protect and recover the functionality of each pcs in case they mess up somethings.
I would like also Centralize the applications, I mean install programs or update the antivirus directly in one machine ( instead now I am doing one by one). Also ensure the Active Directory log of the students.
The idea is give full access to C and simultaneously have a solution that solves any possible damage to system and centralize the maintenance of the software that they are using.
SOLUTION
I expose below two solutions that came to my mind:
1) I thought to use a system that every time the machines are switched on the operating system is loaded (on the ram) from an image stored on a network server. In doing so any damage/ mess up processed during the exercises are canceled when the machine restart. In this mode I do not even need antivirus (which is giving me a lot of problems with some programs, eg with python >> recently avast delete certain file execution - not even say that he has found a threat -). In this configuration, i think, the problem is keep to update the OS and Antivirus. Also install or uninstall programs on the image.
Do you think will be possible create something like that?
2) I thought also to a terminal server or known as remote desktop. There are alternatives to Microsoft? In this regard I would like to ask some questions. In this configuration, update the antivirus or windows would be simple because I should only act on one machine the TS but I would not be able to limit the manipulations of C or eventually virus attacks which would compromise the entire server.
Are there effective solution to use for my needs??
Thanks
) and that won't be cheap either but - and forgive me for being blunt here - your lack of expertise will cause you more problems than you fix.