Locking down a 2003 Terminal Server with a 2008 GPO
I am curious if anyone has any pointers or any links to a site(s) that show how to lock down a 2003 terminal server which I have running as a virtual server on a 2008 system. I have come across numerous links on how to lock down a 2003 terminal server, but nothing about which policies to use when running the server in a 2008 server environment.
ASKER
Thanks for the quick reply. I saw the KB article about locking down the TS. The issue I was having is that in the 2008 GPO, the settings are not in the correct place. For example, the first step is:
[Computer Configuration\Admin Templates\System\Group Policy]
Enable the following setting:
User Group Policy loopback processing mode
This setting is not available in the 2008 GPO. The link that you provided for 2003 GPMC, are you saying this needs to be installed on any XP or 2003 box? If so, how do I link it to users on the 2008 domain controller? Couls it be ran on the terminal server and configured there?
[Computer Configuration\Admin Templates\System\Group Policy]
Enable the following setting:
User Group Policy loopback processing mode
This setting is not available in the 2008 GPO. The link that you provided for 2003 GPMC, are you saying this needs to be installed on any XP or 2003 box? If so, how do I link it to users on the 2008 domain controller? Couls it be ran on the terminal server and configured there?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I installed GPMC on an XP machine and everything worked perfectly. Thanks
Some policy settings in Administrative Templates (ADM) can be relocated in 2008 structure, but you can use GPMC on a 2003/XP machine with older ADM-files
KB about locking down TS
http://support.microsoft.com/kb/278295
Download GPMC for Windows Server 2003
http://www.microsoft.com/downloads/details.aspx?FamilyID=0A6D4C24-8CBD-4B35-9272-DD3CBFC81887&displaylang=en