I'm trying to figure out one thing and I'm looking for as simple solution as possible:-)
I have Windows Server 2008 with Terminal Services, TS Web Access and TS RemoteApps installed.
Once I choose to publish some application to appear in the RemoteApps web page, it appears and can be started.
But I don't think this "everything for any authenticated user" approach is the best one.
Is there any way how to give users different type of access to different applications according to a user's membership in security group or something like that?
I'm not sure if I made myself clear, so will try to be more ilustrative:
User John connects to https://server.domain.com/ts
and he can see the list or RemoteApps like Calc.exe, Notepad.exe...
But there is also user Jim, who needs access to MSPaint.exe and WordPad.exe and shouldn't see (and be able to run) Calc and Notepad.
Is there any way how to achieve this?
I was thinking of different NTFS permissions for these apps, but I don't think it's very smart solution. I searched TS settings up and down but didn't find anything what seems to be related to set different collections of apps.
Any help will be appreciated.