• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1016
  • Last Modified:

Setting a domain level group policy to enable remote control for all desktops

I would like to set a domain level group policy that enables remote desktop on all PC's connected to the domain on a SBS 2003 server.
0
JackAitken
Asked:
JackAitken
  • 6
  • 4
1 Solution
 
SagiEDocCommented:
As far as I am aware this is set under computer's and users on the properties of the user under the remote control tab.
0
 
Philip ElderTechnical Architect - HA/Compute/StorageCommented:
The http://connectcomputer wizard does this out of the box during the workstation configuration.
Philip
0
 
Philip ElderTechnical Architect - HA/Compute/StorageCommented:
Are your users local admins? If they are, they can log on via the Remote Web Workplace.
You can manually enable the Remote Connection in the My Computer properties --> Remote tab. Then add any domain users to the Remote Desktop Users group on the local machine.
Otherwise, you will need to modify GPOs and setup others to get things done ... which defeats the purpose since SBS has all that setup for you already.
Philip
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
JackAitkenAuthor Commented:
Thanks for the comments, but I know how to set it up manually.  What I would like to do is set a group policy that enables remote desktop on the PC's automatically so when a PC is added to the domain, it doesn't have to be set manually, the group policy takes care of it.

Thanks
0
 
Philip ElderTechnical Architect - HA/Compute/StorageCommented:
SBS has this built-in by default. When the http://ConnectComputer wizard is used to connect the computer to the domain, you choose the users that are going to be on the system. Once the wizard completes the install routine, those users are able to RDP via RWW or VPN or LAN.
Philip
0
 
JackAitkenAuthor Commented:
I'll need to try the connectcomputer option.  I've never used that option before.  I'll look it up.  

On existing servers, and Windows2003 non SBS domains, what would be the solution using group policy?

Thanks
0
 
Philip ElderTechnical Architect - HA/Compute/StorageCommented:
Enable the logon via Terminal Services in your default domain policy. Add your domain users to the local computer's Remote Desktop Users group.
Not a good idea on the SBS domain because that will mess things up even more.
Philip
0
 
JackAitkenAuthor Commented:
Sorry for the delayed response.  I'm short handed and have been burried.  Philip, why would setting a group policy defaulting to enabled remote control on the PC mess things up in an SBS environment.

Thanks
0
 
Philip ElderTechnical Architect - HA/Compute/StorageCommented:
Jack,
Because SBS has everything setup for you by default. Use the wizards, follow the SBS best practices and things work.
Don't follow them, make changes with the various components, and things break.
Philip
0
 
JackAitkenAuthor Commented:
Using connectcomputer only assigns the 1 user that was specifed when creating the package.  I now have Kaseya and connect with KVNC, and then run a script to enable remote connections.

Thanks
0
 
Philip ElderTechnical Architect - HA/Compute/StorageCommented:
The script works, but if you choose the option to set multiple users in the ConnectComputer wizard and authenticate with the domain admin credentials, then any number of users can be allowed to RDP in.

Philip
0

Featured Post

Upgrade your Question Security!

Your question, your audience. Choose who sees your identity—and your question—with question security.

  • 6
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now