I'm trying to configure what should be a typical situation: lock down a TS with very restrictive group policy but allow the same users to come into the office and log into their workstations under a looser policy.
I've followed MS KB 260370 (http://support.microsoft.com/?kbid=260370
) and read other articles, etc, but it's not working like it's supposed to.
I'm hoping someone might be able to point out where I might be going wrong, what to look towards fixing, etc.
Windows 2000 domain controller, w2k TS server, wXP clients.
At this point, I have a OU container, "Terminal Svr". I have moved the TS computer, "2kTS" into it. I have linked my draconian "TS Users" group policy to the OU, and the Loopback option is enabled. The TS Users GPO has the 2kTS computer account added to the Security tab, with Read and Apply checked.
What have I missed?