I have created an OU called LabUsers under domain.local in ADUC. I have added half a dozen users into this OU. I want all the users to be able to access other PC's on the network. At the moment when a user tries to access another machine remotely there is a warning stating "To log on to this remote computer you must be granted the allow logon through terminal services right" I've been exploring two ways around this. 1st way was to create a GP on the LabUsers OU allowing remote access. The second was was to create a security group which is a member of RemoteDesktopUsersGroup and make all my users members of that group. That didnt seem to work either? Can anyone help me?