because of a pending hardware maintenance on one of our domain controller i edit the "Default Domain Controller Security Policy" so that the Group Server Operators can log on through Terminal Services.
After the Maintenance successfully finished i reseted the Policy Right and set the Log on through Terminal Services Policy to the original state (not defined).
Now no one can log on through terminal services to all Domain Controllers. Even the Domain Administrators can.
Gpupdate doesn't help. I have taken this change 4 hours ago.
Thinking about it, if you want to tattoo back the local settings to allow you remote access, define this policy in the Default Domain Controller Policy, adding 'DOMAIN\Domain Admins' and 'Administrators'.
Select from freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely and get projects done right.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008.
Determine the location of the FSMO roles by lo…