I am running windows2003 server and have a remote user who accesses our LAN via a seperate hardware based VPN.
All works fine and the user has access to mapped drives and can access their windows 200 desktop currently via netmeeting.
I would like this user to our windows 2003 RDP to run in a session on the server. This works fine and most of the security is good, ie they cannot access most folders etc.
My problem is that this user can access the windows folder and run anything within it (eg regedit and other dangerous things).
Is there a way to prevent the user from seeing/accessing the servers windows directory when running a rdp session. I have tried locking the folder to them using the security tab, but it prevents them logging in.
Thanks in adavnce