[Webinar] Streamline your web hosting managementRegister Today


Disable access to Terminal Server while updating

Posted on 2007-10-08
Medium Priority
Last Modified: 2013-11-21
Is there a way that I can disable the ability for people to log into the Microsoft Terminal Server 2003, temporarily, with out inhibiting any functionality of the Terminal Server itself while I install Service Packs, Critical updates, software installs/upgrades, etc?

Basically I don't want to have to rely on 'asking' staff to not log in during this time.

I don't want to disconnect the server from the network as I need to access resources from other systems.
Question by:gamm

Expert Comment

ID: 20038636
I'd suggest looking at the Local Security Policy for the server - there should be a policy setting that controls which user groups can logon to the server. If you temporarily remove the domain users from that list, and leave yourself (or the administrators group), you should be able to login while ordinary users will get a permission error.

I don't have a TS machine around to give you the exact policy setting, but if you take a look in the list you should be able to find it.
LVL 13

Expert Comment

ID: 20038824
Open the Services.msc applet and stop the "Terminal Services" service.  As long as you are logged into the console you will be able to work on the server normally.
LVL 86

Accepted Solution

oBdA earned 2000 total points
ID: 20039071
Open a command prompt, enter
change logon /disable
Current sessions will remain open, but remote logons to the terminal server aren't possible anymore.
To enable logons again, use
change logon /enable
To check the current state, use
change logon /query

Terminal Services is one of the services that can not be stopped while the machine is running.
LVL 13

Expert Comment

ID: 20039134
Thanks for letting me know oBdA.  I was going by memory and thought I'd done it before but the memory does fail me sometimes.  Let that be a good lesson for me to double-check things before writing them down.  :)

Author Comment

ID: 20045976
Thanks oBda,
I will try this out when I next run an update and will allocate you the points then.


Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Issue: One Windows 2008 R2 64bit server on the network unable to connect to a buffalo Device (Linkstation) with firmware version 1.56. There are a total of four servers on the network this being one of them. Troubleshooting Steps: Connect via h…
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
Kernel Data Recovery is a renowned Data Recovery solution provider which offers wide range of softwares for both enterprise and home users with its cost-effective solutions. Let's have a quick overview of the journey and data recovery tools range he…
Stellar Phoenix SQL Database Repair software easily fixes the suspect mode issue of SQL Server database. It is a simple process to bring the database from suspect mode to normal mode. Check out the video and fix the SQL database suspect mode problem.

591 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question