• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 221
  • Last Modified:

Remote Desktop Users


I have an Active Directory Server in a test environment. The server currently acts only as a DHCP and DNS server in our production environment.

I have configured a number of users ready to start the process of policy modeling. A certain number of users need to be able to remote desktop onto a number of servers that are participating in the active directory environment.

The issue I have is this. I have a test remote user called ruser. This user is a member of the bultin Remote Desktop Users security group.

I have a GPO linked to an OU that permits logon through terminal services to any machine in that OU. I have run the Model Report and the result suggests that the machine is picking up the GPO and allowing log on through terminal services but the User is not picking up the Remote Desktop Users security group.

Any suggestions?
  • 2
1 Solution
Rob WilliamsCommented:
The Remote Desktop Users Group is a group local only to the local machine/server. not domain/OU wide. Therefore a common practice is to create your own global group, name it something like Terminal server Users, add your users, and add that group to each terminal server's local Remote desktop users group.
One way of deploying this through group policy is to use "Restricted Groups" to add or replace the local Remote Desktop User's group members, with your new global group.
SimonHuberAuthor Commented:
The article linked in this thread solved a problem that I have been scratching my head over for some time. Excellent.
Rob WilliamsCommented:
Thanks SimonHuber.
Glad to hear you were able to get it sorted out.
Cheers !

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now