I've applied a domain wide policy for a corporate wallpaper for all users. That works fine. However, I would like to deny this policy when users log in to the terminal services server. I've tried to add the TS computer to the security of the GPO and deny the apply group policy permission, but it doesn't work. If I deny my user the same permission and log on, it works, but for some reason it wont deny for the computer account. Is there something that I'm missing?