Solved

Remote Desktop Access

Posted on 2004-09-05
6
189 Views
Last Modified: 2010-04-19
Hi guys, hope you can help.

I need a user to be able to remote desktop into a server to administer only 1 Application only.

How can I limit their privileges to the server when they remote desktop into the server?

Thank you

Simon
0
Comment
Question by:Simon336697
6 Comments
 
LVL 10

Expert Comment

by:dis1931
ID: 11986969
What application is it?
0
 
LVL 1

Author Comment

by:Simon336697
ID: 11986972
Hi dis1931,

It is a program for wyse terminal.

All I want is for them to be able to launch this application, have full rights to it.

The server is windows 2003 Server.

0
 

Expert Comment

by:jdpierce21
ID: 11987013
I would create a group for just that program.  Then place those users into that group.  Make sure their permissions are setup for just that program.
0
Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

 
LVL 10

Accepted Solution

by:
dis1931 earned 500 total points
ID: 11987172
I think you will be better off with Terminal Services.  Remote Desktop is meant for admins mostly and there are not really permissions set for remote desktop users.  You can create a group and set permissions but there are not really application permissions in Windows...Even users or guests have access to most applications.  You can use group policy to limit the user account you choose so that they can only launch one application all other will give access denied...but you will have to test out to see how well it works.  In terminal services, you can have one application open up and have no access to anything else or even to see anything else..

Dis
0
 
LVL 1

Author Comment

by:Simon336697
ID: 11987745
Hi Dis,

Thanks for that info.

I have set up the Terminal Services Server, and have tried to connect 2 users to it through RDP.
I have set up the server in Remote Admin mode, and have found that it only allows 2 connections at a time.
Is this correct?
You have the points in the bag Dis, but I just wanted to also know what is the correct procedure for logging out of a Terminal Services session to give back connections so that further are possible. Do you log off or disconnect?

Thanks in advance.

SImon
0
 
LVL 6

Expert Comment

by:youre1m
ID: 11988313
You log off. If you disconnect from a session the session remains open until you reconnect and log off or the idle limit is reached for disconnected sessions (there is a setting to control how long a disconnected session remains until it is automatically logged off).
0

Featured Post

NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Server 2000 functional level to server 2008 r2 5 73
VM server storage space expansion to improve the Server performance. 2 83
heat agent push through GPO 2 57
Dentrix G4 1 65
So you have two Windows Servers and you have a directory/folder/files on one that you'd like to mirror to the other?  You don't really want to deal with DFS or a 3rd party solution like Doubletake. You can use Robocopy from the Windows Server 200…
While rebooting windows server 2003 server , it's showing "active directory rebuilding indices please wait" at startup. It took a little while for this process to complete and once we logged on not all the services were started so another reboot is …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

832 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question