We help IT Professionals succeed at work.

We've partnered with Certified Experts, Carl Webster and Richard Faulkner, to bring you two Citrix podcasts. Learn about 2020 trends and get answers to your biggest Citrix questions!Listen Now

x

Signing onto machine with Remote Desktop User Accts

dakeys
dakeys asked
on
Medium Priority
394 Views
Last Modified: 2010-04-19
I have a SBS2003 server up and running, and I am logging into one of my client machine through terminal services.
The only acct that I could login with is the admin acct. If I put the users login I can't get in.
I know there is a setting on both the local sec policy and the Domain Security policy that says "Allow Logon of Terminal Service". In this group I have administrator and remote desktop users, but it still won't work.

Oh yeah, I also checked in the deny logon through terminal service, and no one is in that group.

Where else should I be looking.

Any suggestions?

Comment
Watch Question

Commented:
Check your Active Directory groups to find out which groups have access to remote desktop. Also make sure the account that you are using is administrator on the server you are logging into.

Create a local account on the box you are trying to remote into. add the account to the admin group and it should work

Not the solution you were looking for? Getting a personalized solution is easy.

Ask the Experts
Jeff BeckhamEngineer
CERTIFIED EXPERT
Commented:
If you're just wanting to enable RD for this particular user at this particular PC, perform the following:

Control Panel -> System
Click on the Remote tab
Check "Allow users to remotely control this computer"
Click on the "Select Remote Users" button.
Add the user's domain account to the list.
Hit the OK button twice.

Depending on if/how you've deployed Windows XP SP2, you might need to make an exception for Remote Desktop.  For more information on this, see: http://www.microsoft.com/windowsxp/using/mobility/rdfaq.mspx
The question is not clear. Are you loggin onto a domain or "this computer"?

For both, (1) you need to go to the SBS2003 server, Settings, Control Panel, System, Remote, Remote Desktop, check the check box and click "Select Remote Users", add the domain user into the list.

(2) make sure your firewall has this as an exception

If logon to a domain, you should be fine

If not logon to domain, you need add a list of usernames in the SBS2003 server (local users) and set proper permission and in "Select Remote Users", add those users in the list.
Just as the experts stated above you must have privleges to login remotly and also be a part of the remote desktop users group.

Make sure there aren't already two connections to the client.  The error would tell you there are already connections to the client.

Also check the Terminal Services Configuration, you may want to make sure you check the override user settings check box.  Terminal services manager can also be helpfull here.

Do you use group policy?  make sure the local machine policy isn't thwarting domain policy.

If your able to get to the client pc check the security log see if it gives any good information about the login failure.

If none of the windows help above works I'd check the firewall...  try to ping the client first.  If that fails there are bigger network issues.  Otherwise remote desktops uses port 3389.
Jeffrey Kane - TechSoEasyPrincipal Consultant
CERTIFIED EXPERT
Most Valuable Expert 2016
Top Expert 2014
Commented:
dakeys,

Users that are assigned to a workstation MUST be added to the local Administrator's group.  This is done automatically when you run the connectcomputer wizard when you join the computer to the domain.  If a user is assigned to a workstation AFTER you've joined it to the domain, you must manually add them to the Local administrators group on that workstation.

Jeff
TechSoEasy
Top Expert 2006

Commented:
No comment has been added to this question in more than 21 days, so it is now classified as abandoned.

I will leave the following recommendation for this question in the Cleanup topic area:
    Accept: TechSoEasy {http:#16433108}

Any objections should be posted here in the next 4 days. After that time, the question will be closed.

Zadkin
EE Cleanup Volunteer
Access more of Experts Exchange with a free account
Thanks for using Experts Exchange.

Create a free account to continue.

Limited access with a free account allows you to:

  • View three pieces of content (articles, solutions, posts, and videos)
  • Ask the experts questions (counted toward content limit)
  • Customize your dashboard and profile

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.