Remote Desktop Compromise
Posted on 2009-05-18
We have several servers configured according to their role. The server in question presently is an Exchange server.
We outsource our engineers. They have set the sessions not to time out because they are sometimes working remotely on projects that need to continue to run even if they have to walk away from the system for a few hours - long enough for Citrix to disconnect them.
We often see the terminal services has reached its maximum number of connections error.
How can we achieve their goal while not putting ourselves in the position to have to directly visit the server when there are several disconnected sessions? Is there a way to see who is logged in via RDP? Is there a way to forcefully log off RDP sessions from the server?