• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 156
  • Last Modified:

Terminal Services for Windows 2000

How can I restrict all the administrator tools from being used when a user logs into the server via Terminal Services. I want to create a policy so nobody can access that server admin applications.
1 Solution
you will need to apply a group policy to the users that restricts the use of certain tools

user config - admin temps - windows comps - microsoft management console - premitted/restricted snap ins
Make sure the TS users are not Administrators.

If the users only need one applcation on the TS, configure it to run when user logs in. That way, the users do not get the Windows GUI (no Start Button, no Task Bar) so they won't be able to launch any other apps.
If you need limit user access to admin toools, just change the security parameters to deny all domain users in the all users > start menu folder for the corresponding folder. Users don't need to have access to a control panel also, so take that away in Group Policy.

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now