Okay, I'm pretty new to terminal services and I am trying to grasp a hold on how security polices work and where they should be applied. Here is my setup,
SBS2003 server that is running as the domain controller and terminal server licensing services.
I also have a windows 2000 server machine that everyone is connecting to through terminal server.
This server has one application that the whole office uses.
Because the SBS2003 server is basically running the show, do I apply policy to terminal services on the sbs or on the windows 2000 server.
Also, if your apply it to sbs, would you just simply apply local policy to further lock it down?