parts_peripherals
asked on
Administrator can see other users' printers in a 2003 terminal server session
Hi,
i have a windows 2003 terminal-server (with sp1)
i have 10 users ho have no administrator-rights and they all have there local printer when they connect to the terminal-server with rdp.
i have 1 user ho have administrator-rights, and that user can see all the printers of the other users.
The problem is that that user print sometimes on the wrong printer.
Is there a way to make that user not to see other users printers ?
Rudy
p&p
i have a windows 2003 terminal-server (with sp1)
i have 10 users ho have no administrator-rights and they all have there local printer when they connect to the terminal-server with rdp.
i have 1 user ho have administrator-rights, and that user can see all the printers of the other users.
The problem is that that user print sometimes on the wrong printer.
Is there a way to make that user not to see other users printers ?
Rudy
p&p
ASKER
is there really no way to set the account of that administrator to not see other users printers, that woud bee the best sollution for me.
Rudy
p&p
Rudy
p&p
If a user has administrator rights then they are an Administrator and therefore can manage the machine. I know if one of my users couldn't figure out which printer to use I sure wouldn't make them an administrator on a server. That user has enough rights to blow up that machine and they can't even print correctly. You might want to rethink the setup.
Darren
Darren
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Ruby,
Yes, there is a way. There a policy you need to change either locally on the terminal server by going to Start>Run and opening gpedit.msc or from a group policy in AD. Here's the details...
Load and unload device drivers
Computer Configuration\Windows Settings\Security Settings\Local Policies\User Rights Assignment
Description
Determines which users can dynamically load and unload device drivers. This privilege is necessary for installing drivers for Plug and Play devices.
Default: Administrators.
Yes, there is a way. There a policy you need to change either locally on the terminal server by going to Start>Run and opening gpedit.msc or from a group policy in AD. Here's the details...
Load and unload device drivers
Computer Configuration\Windows Settings\Security Settings\Local Policies\User Rights Assignment
Description
Determines which users can dynamically load and unload device drivers. This privilege is necessary for installing drivers for Plug and Play devices.
Default: Administrators.
nprignano