Deny logon through Terminal Services vs. RDP Permissions

Hi, I was wondering if there is any difference between using 'Deny logon through Terminal Services' in the Local Security Policy and restricting permissions for RDP in Terminal Services Configuration.  Do they both have the same effect and is one preferred over the other?  Thanks in advance.
Who is Participating?
plug1Connect With a Mentor Commented:
They both have the exact same effect but the preferred way is to control access viausers and groups using the local "remote desktop users" group on the terminal servers and adding global groups to there. Its much easier to manage.
donfornioAuthor Commented:
Thanks Plug1, is there a way to configure Windows 2000 Server to only allow someone in the remote desktop users group access to terminal services?
You would do it the same way mate, you add the users you want to use it into a global group and then on the terminal server add that global group into the local "remote desktop Users" group. Doesnt matter if its NT4, 2000 or 2003... or even 2008.
donfornioAuthor Commented:
Thanks for the help.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.