Signing onto machine with Remote Desktop User Accts

I have a SBS2003 server up and running, and I am logging into one of my client machine through terminal services.
The only acct that I could login with is the admin acct. If I put the users login I can't get in.
I know there is a setting on both the local sec policy and the Domain Security policy that says "Allow Logon of Terminal Service". In this group I have administrator and remote desktop users, but it still won't work.

Oh yeah, I also checked in the deny logon through terminal service, and no one is in that group.

Where else should I be looking.

Any suggestions?

Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Check your Active Directory groups to find out which groups have access to remote desktop. Also make sure the account that you are using is administrator on the server you are logging into.

Create a local account on the box you are trying to remote into. add the account to the admin group and it should work
Jeff BeckhamEngineerCommented:
If you're just wanting to enable RD for this particular user at this particular PC, perform the following:

Control Panel -> System
Click on the Remote tab
Check "Allow users to remotely control this computer"
Click on the "Select Remote Users" button.
Add the user's domain account to the list.
Hit the OK button twice.

Depending on if/how you've deployed Windows XP SP2, you might need to make an exception for Remote Desktop.  For more information on this, see:
The question is not clear. Are you loggin onto a domain or "this computer"?

For both, (1) you need to go to the SBS2003 server, Settings, Control Panel, System, Remote, Remote Desktop, check the check box and click "Select Remote Users", add the domain user into the list.

(2) make sure your firewall has this as an exception

If logon to a domain, you should be fine

If not logon to domain, you need add a list of usernames in the SBS2003 server (local users) and set proper permission and in "Select Remote Users", add those users in the list.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Introduction to Web Design

Develop a strong foundation and understanding of web design by learning HTML, CSS, and additional tools to help you develop your own website.

Just as the experts stated above you must have privleges to login remotly and also be a part of the remote desktop users group.

Make sure there aren't already two connections to the client.  The error would tell you there are already connections to the client.

Also check the Terminal Services Configuration, you may want to make sure you check the override user settings check box.  Terminal services manager can also be helpfull here.

Do you use group policy?  make sure the local machine policy isn't thwarting domain policy.

If your able to get to the client pc check the security log see if it gives any good information about the login failure.

If none of the windows help above works I'd check the firewall...  try to ping the client first.  If that fails there are bigger network issues.  Otherwise remote desktops uses port 3389.
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:

Users that are assigned to a workstation MUST be added to the local Administrator's group.  This is done automatically when you run the connectcomputer wizard when you join the computer to the domain.  If a user is assigned to a workstation AFTER you've joined it to the domain, you must manually add them to the Local administrators group on that workstation.

No comment has been added to this question in more than 21 days, so it is now classified as abandoned.

I will leave the following recommendation for this question in the Cleanup topic area:
    Accept: TechSoEasy {http:#16433108}

Any objections should be posted here in the next 4 days. After that time, the question will be closed.

EE Cleanup Volunteer
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.