Solved

Proper way to give user access to terminal server

Posted on 2006-06-23
5
257 Views
Last Modified: 2010-04-18
My first terminal server set-up I seem to remember putting using in security group i.e. TS_Users and adding that security group in Terminal Services Configuration > Connection > Properties > Permissions >  with Guest access. Last one I tried adding to  TS_Users (and individual users) to RDP Users Group in AD and that did not work, Adding TS_Users security group to TSConfiguration did not work as it did before. I ended up having to add each user individually to Terminal Services Configuration with Permissions.

I am now setting up another terminal server. What is proper way to grant users access?
0
Comment
Question by:AndykEE
  • 2
  • 2
5 Comments
 

Author Comment

by:AndykEE
Comment Utility
PS this is DC in a single server domain, yes I know that is not recomended.
0
 
LVL 48

Assisted Solution

by:Jay_Jay70
Jay_Jay70 earned 400 total points
Comment Utility
we do exactly that in our small sites, single DC with TS, simply add the users to the RDP users group and also add the group under terminal services configuration, you may also need to check the local policy on the DC and make sure they are permitted to log in
0
 
LVL 9

Accepted Solution

by:
vsg375 earned 100 total points
Comment Utility
Hi,

Jay has it right. Just make sure that these users have the "log on locally" permissions on this computer. That would mean allowing them to log on to a DC, but since they are "basic" users, they won't harm anything in your AD infrastructure.

HTH
Cheers
0
 

Author Comment

by:AndykEE
Comment Utility
Where do I give permissions to log on locally? Is it Admin tools > Default Domain Controller Security Settings > Local Polocies > User Rights Assignment > All log on locally Properties > add users ?

Before post I had tried to do this in Group Policy Mgt > Default Domain Policy but was spooked by warning that if correct access rights where not given some things would not function right.
0
 
LVL 48

Expert Comment

by:Jay_Jay70
Comment Utility
thats the correct policy - ignore that message, its just an additional security note
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Join & Write a Comment

Scenerio: You have a server running Server 2003 and have applied a retail pack of Terminal Server Licenses.  You want to change servers or your server has crashed and you need to reapply the Terminal Server Licenses. When you enter the 16-digit lic…
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
When you create an app prototype with Adobe XD, you can insert system screens -- sharing or Control Center, for example -- with just a few clicks. This video shows you how. You can take the full course on Experts Exchange at http://bit.ly/XDcourse.

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now