troubleshooting Question

Restrict Software to Specific User on Terminal Server

Avatar of phsit
phsitFlag for United States of America asked on
Windows Server 2003Microsoft Server OS
8 Comments1 Solution452 ViewsLast Modified:

I've read quite a few postings and Microsoft documents, but cannot seem to figure out how, exactly, software restriction are applied to specific users. Here's the setup, numbers are for example:

+ Windows 2003 Server running Terminal Services
+ This server is accessed by 20 users via RDP.
+ I want only 6 of them to be able to run Office.
+ I have a small number of other applications I would like specific users to run.
+ I would like to use local policy for simplicity, even though this server is part of a domain.

So, my guess to do this is the following:

+ Create a local group "Office Users", containing those users permitted to run Office.
+ Set the default Software Restriction Security Level to "Disallowed"
+ Add an Additional Path Rule (Unrestricted) containing the path to the Office apps.

My problem: I cannot see how to apply this additional rule to specific users, that is (I guess) to the Office Users group.

(Sorry if I didn't pick the question zones correctly.)
Join the community to see this answer!
Join our exclusive community to see this answer & millions of others.
Unlock 1 Answer and 8 Comments.
Join the Community
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 8 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros