• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 816
  • Last Modified:

Termiinal Services, RemoteApp - How do I restrict users from browsing to all folders on the server when saving

I am about to give remote users access to a program via RemoteApp. How do I stop them browsing or typing in the pathway to folders on the server.

  • 2
1 Solution
To prevent unauthorized users from accessing administrative folders under Microsoft Servers, use access control lists (ACLs) to prevent read access by unauthenticated users of the operating system as well as by clients connecting to Servers. When you use ACLs to restrict access, only properly authenticated users can view the contents of the Contribute administrative folder. Anonymous Server clients, or other users with access to the server, cannot view the administrative folder and its contents.
.....Hope this helps
You could enable Access based enumeration and if they don't have NTFS access to the folder or files, then they wouldn't see anything at all.
Another thing, if you're using RemoteApp, then they would only be able to use the funtionality of the application you are using. Of course, if that app shows them folders in a browser then my above comments would be valid.
Hope this helps.
320adelAuthor Commented:

Thanks for the advise, I tried ACL's restricting user access to folders which works fine for your general domain user however I found it was to difficult to seperate what is and isn't require from the server C drive for terminal services. In the end found the best solution was to create a new group and set group policy.
Did you try my comments?

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now