Solved

Can I enable RDP access for non administrator users?

Posted on 2006-07-17
11
844 Views
Last Modified: 2012-06-27
Hello Experts,

If its possible to allow non administrator users to remote into their workstations, what is the proper way to enable that on Small Business Server 2003?

I can already remote into the workstations, as long as I log in as Administrator, otherwise I get a message telling me remote access is not available.
0
Comment
Question by:OzoneFriendly
  • 4
  • 4
  • 2
  • +1
11 Comments
 
LVL 26

Expert Comment

by:Pber
ID: 17127195
On the workstations, just right click My Computer and select properties.
Select the Remote TAB
Check off the Allow users to connect remotely to this computer.
Click the Select Remote Users button
Add users as you see fit.

The User should now be able to RDP into the workstation.
0
 

Expert Comment

by:Terr0r
ID: 17127410
You can do this via the workstations as Pber mentioned. The next question is do your workstations have external IP addresses? If not, do you have an external IP block to allow the neccesary connections from your users connecting to their workstations. If not, you will need to set RDP for each user to forward to their private IP via different ports.

How to change the port:

http://support.microsoft.com/?kbid=187623

and connect to the computer using a different port using windows xp:

http://support.microsoft.com/?kbid=304304
0
 

Author Comment

by:OzoneFriendly
ID: 17127698
Hello again;

I can already remote into the machines, the problem is that the users are domain users and not domain admins, and non administrator users cannot log in remotely.

What I need is to allow non domain users to access their workstaions via RDP.
0
 
LVL 9

Expert Comment

by:vmaheen
ID: 17127904
hi friend,
 *you can configure it through Group policy
* or you can add users to "remote desktop user"  group

run   gpedit.msc

computer configuration
       > Windows setting
                     > user rights and assignment
                                          >allow logon through terminal service ..  > and   add the users list


regards
Maheen
0
 
LVL 9

Accepted Solution

by:
vmaheen earned 500 total points
ID: 17127922
sorry some lines missing ..

run
gpedit.msc

computer configuration
       > Windows setting
                       >security settings
                                     > local polices
                                            > user rights and assignment
                                                           >allow logon through terminal service ..  > and   add the users list


0
Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

 

Expert Comment

by:Terr0r
ID: 17131577
vmaheen is correct. Sorry, was confused on the question. Hope all works well for you.
0
 

Author Comment

by:OzoneFriendly
ID: 17134393
Hello again experts,

I added the users to REMOTE DESKTOP USERS, but I still get this error;

The local policy of this system does not permit you to logon interactively.

Do I have to change local policy? Can I do that from the server or do I have to do it on the local workstation?
0
 

Author Comment

by:OzoneFriendly
ID: 17134400
... or perhaps I just need to try the group policy vmaheen has suggested. I'll go try that now.
0
 
LVL 9

Expert Comment

by:vmaheen
ID: 17135586
Hi Ozone   , hi Terr0r :)

domain group always override local policy. if you not configure through domain group policy then local polices will work.  as your request you can decide . controling  all workstation  then Domain  GPO is best.   to workstaion  level then Local GPO.

** and Blank password will not allow login  through RDP.
     check the GPO there is "deny lonon throgh terminal service".

here is the nice article
http://www.windowsdevcenter.com/pub/a/windows/2004/10/05/Remote_Desktop.html

Maheen
0
 

Author Comment

by:OzoneFriendly
ID: 17144680
Thanks experts, its all good now!
0
 
LVL 9

Expert Comment

by:vmaheen
ID: 17144781

thanks for points OzoneFriendly

Maheen
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Join & Write a Comment

Recently, I had the need to build a standalone system to run a point-of-sale system. I’m running this on a low-voltage Atom processor, so I wanted a light-weight operating system, but still needed Windows. I chose to use Microsoft Windows Server 200…
I've always wanted to allow a user to have a printer no matter where they login. The steps below will show you how to achieve just that. In this Article I'll show how to deploy printers automatically with group policy and then using security fil…
Excel styles will make formatting consistent and let you apply and change formatting faster. In this tutorial, you'll learn how to use Excel's built-in styles, how to modify styles, and how to create your own. You'll also learn how to use your custo…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

747 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now