What I have is a bunch of users that are essentially using Windows 2003 Terminal Services (Remote Desktop) sessions as "Dumb Terminals". I put 4 Icons on the desktop and that's all I want them to have access to. I don't want them to have the ability to shut down the session. I don't want them to be able to add shortcuts, explore by right clicking on the start button, etc.
Any ideas on how I can lock them down? Do I need to be set up in an Active Directory environment to be able to use group policies? Right now I'm set up as a standalone server.