I have a single server setup, a Windows 2008 server, x64: The quest for this setup is a single server which holds AD and users able to use it as a terminal server.
The Server holds serveral roles: Active directory,Terminal Services, Print, File, IIS
My problem is that only administrators can log onto the server from thin clients or desktops using Remote desktop. if a normal user tries to log in the following error appears: "To log on to this remote computer, you must be granted Allow log on through terminal services right. By default yada yada yada" the error msg goes on and on.
The user im trying to log in with, is endeed within the "remote dekstop users" group. Remote dekstop is enabled on the server. During the installation of the terminal server role, i actually added a security group called "Terminal server users" and gave the group permission to remote dekstop users.
As soon as i add the user to the administrators group in the ad - the user can log in with remote dekstop - no problem at all.
I have added 5 2008 TS CAL's USER - The Licensing server is in per user mode. Licens server is activated.
Is there any known conflict with a single 2008 server running both AD as primary DC and Terminal server?
Anyone got any clues on what i could try and do to fix this so that the users can log in?