Terminal Services in Windows server 2003

I want to gave access to few of our employee terminal access to one of our server but only to a one particular application.
its windows server 2003 R2 Enterprise Edition (Service Pack 1)
not sure how can we do it.
any information will be highly appreciated.
LVL 1
amitbhardwaj100Asked:
Who is Participating?
 
acronymsConnect With a Mentor Commented:
The only way to log the user off is by using the run application when user starts the Terminal Server Session. When they close that opp it automatically logs them off.

The Group Policy is

User Configuration - Administrative Templates - System

Under the system tab on the right hand pane you will have the "Run Only Allowed Windows Applications"

Open this and define only the name of the Application. You may have to name a few more if your app calls upon other apps to run properly. Trial and error in the sand box I am afraid.

Hope this helps.

0
 
acronymsConnect With a Mentor Commented:
You can specify that an application is run on start of the Terminal Server Session.

You can do this for the user or for the Terminal Server.

The User is done through the Environment Tab in AD and the Terminal Server itself is done through Terminal Server Management on the server itself.

If you want specifics post back and I will explain exactly how to do it but it it is pretty self explanatory.

Hope this helps.

Regards
0
 
amitbhardwaj100Author Commented:
Thanx for the quick reply but the information that you provided to run the particular application on logon but my main concern is to provide the access to only one  application and prohibit everything else. I dont want them to access any thing else on that server and I want my self to access everything through terminal services.
0
2018 Annual Membership Survey

Here at Experts Exchange, we strive to give members the best experience. Help us improve the site by taking this survey today! (Bonus: Be entered to win a great tech prize for participating!)

 
acronymsConnect With a Mentor Commented:
I may have misread or misunderstood the question. As I read it the application is on the Server and it will run through Terminal Services on that server. You want the users to have access and run that application and restrict any other access. You want full control to administer the server.

You can use Group Policy to allow only certain .exes to be run therefore anything else would get the standard response of "Administrator Disallowed this application"

In conjunction with the logon application previously mentioned this will work well. I have used this method to only allow certain apps. As for yourself make sure you deny access to the Group Policy Object then it will not affect you.

To limit user who can access this use a Security group and allow only that group to logon through terminal services.

If you want anything expanding please feel free to ask.

Regards

0
 
amitbhardwaj100Author Commented:
Thanx for the reply again.
but can you please explain how can I block everything with Group policy except one particular application. I also want the system to log off the client if they close that particular application. is it possible?

0
 
amitbhardwaj100Author Commented:
The Best way to provide the access to one particular application to user through terminal services is first of all install the terminal services in a application mode and then install the application through control panel, Add New Program. and then provide the access  to that person  to that application only
0
All Courses

From novice to tech pro — start learning today.