Solved

Terminal Services Security

Posted on 2006-11-04
7
222 Views
Last Modified: 2010-04-18
Hi,

I am new to Terminal Services. My company runs a Small Business Server, and also has a Windows 2003 Server on which is installed Terminal Services, and a particular application I want TS users to access. However I want to restrict most users from accessing anything else on the network, other than e-mail from thew SBS, but including the C, D & E drives on the Windows 2003 server. However the application they need to access is located in Program Files, but doesn't need to be. I am conscious that our network and business must not be compromised, so any help on security, setting up, etc., would be most welcome
0
Comment
Question by:LJShepherd
  • 2
  • 2
  • 2
7 Comments
 
LVL 48

Assisted Solution

by:Jay_Jay70
Jay_Jay70 earned 250 total points
ID: 17877723
me released an entire document on simply locking down term serv, might be worth a read

http://www.microsoft.com/windowsserver2003/techinfo/overview/lockdown.mspx
0
 
LVL 9

Accepted Solution

by:
SamuraiCrow earned 250 total points
ID: 17879658
If you hide the local drives (recommended) the users can still access their programs.  This basically means that they can access the local drives but not browse to them through explorer.  The document that Jay Jay provided is also a very good read.  Take a look at the documents and let me know if you have any follow up questions:

Hiding Drives on 2003 Terminal Server
http://support.microsoft.com/kb/278295

Hope this help
Crow
0
 

Author Comment

by:LJShepherd
ID: 17879868
SamuraiCrow my aploogies. This is the first time I have used Experts Exchange, and I intended splitting the points, as your info added another dimension on to what Jay Jay provided me, but I didn't realise that I had to hit the Split Points button before accepting the answer. Don't know how to make amends, but I don't think this will be the last time I need to help, so maybe I can make it up to you in future.

Cheers

Les Shepherd
0
6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

 
LVL 9

Expert Comment

by:SamuraiCrow
ID: 17882131
No worries.  You'll catch me on the next trip around!

Crow
0
 

Author Comment

by:LJShepherd
ID: 17885333
Many thanks Jay Jay, I do appreciate that.

Cheers to both of you
0
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 17885425
No Problem at all, Thank you :)
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

The HP utility "HP Lights-Out Online Configuration Utility for Windows Server 2003/2008" could be of great use when it comes to remotely configure a HP servers ILO WITHOUT rebooting the server. We would only need to create and run scripts using thi…
by Batuhan Cetin In this article I will be guiding through the process of removing a failed DC metadata from Active Directory (hereafter, AD) using the ntdsutil tool in a Windows Server 2003 environment. These steps are not necessary in a Win…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
This tutorial demonstrates a quick way of adding group price to multiple Magento products.

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now