How do I set up users to log directly into the RDS session with no local control on their computers?

Posted on 2009-12-28
Last Modified: 2013-12-22
I just set up a Windows Server 2008 R2 server and WEB RDS which works great.  But I have about 15 local users who are on old XP systems which I can't replace right now, so I though If I have them log directly to the RDS with the applications I want to make available to them this could eliminate a purchasing 15 new pc's right now.
Question by:Surengoel
    LVL 20

    Expert Comment

    by:Jakob Digranes
    do you mean that you want them to have no control over local machines and go straight into RDS?
    You could lock down their local machines through GPO (let me know if you need help with this) and only have RDS available on startup, either start automatically or as only icon on desktop

    Author Comment

    Yes, no control over their desktop and go straight into RDS - and yes need help with local machine lock down - only have RDS available on start up automatically.

    Author Comment


    Are you still commenting on this one?
    LVL 20

    Accepted Solution

    Yes ...
    When i comes to locking down the workstation - you would have to decide yourself what actions to take, but here's a walk through to get you started.

    Create an OU for the computers you want to lock down
    Create a new Group Policy and link it to the OU you hust created
    Go to user configuration and Administrative Templates and look at the things you can configure here.
    Just walk through every single item (You'll learn quite a bit doing it this way) and enable what you want.
    - Hide My computer - enabled
    - exclud access to task manager
    - run only following programs
    - hide local drives
    etc ...

    Was this something to get you going or shall I dig up a webpage or doc to show this in more detail?
    There's no 100% correct or incorrect way to configure this, the configured settings change depending on your needs ...

    Author Comment

    Thanks a ton that's enough I got it from here, how about when they boot up and log-in they are in the terminal session, will that show up in the Admin template?
    LVL 20

    Expert Comment

    by:Jakob Digranes
    Depending on your OU structure. As long as TS-server is not in that OU - they should be fine within RDP

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    How your wiki can always stay up-to-date

    Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
    - Increase transparency
    - Onboard new hires faster
    - Access from mobile/offline

    I was supporting a handful of Windows 2008 (non-R2) 2 node clusters with shared quorum disks. Some had SQL 2008 installed and some were just a vendor application that we supported. For the purposes of this article it doesn’t really matter which so w…
    Remote Apps is a feature in server 2008 which allows users to run applications off Remote Desktop Servers without having to log into them to run the applications.  The user can either have a desktop shortcut installed or go through the web portal to…
    This tutorial will walk an individual through the process of upgrading their existing Backup Exec 2012 to 2014. Either install the CD\DVD into the drive and let it auto-start, or browse to the drive and double-click the Browser file: Select the ap…
    This Micro Tutorial will give you a basic overview of Windows DVD Burner through its features and interface. This will be demonstrated using Windows 7 operating system.

    759 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    9 Experts available now in Live!

    Get 1:1 Help Now