Link to home
Start Free TrialLog in
Avatar of Daniel Baies
Daniel BaiesFlag for United States of America

asked on

Windows Server 2008 R2 remote desktop user login problem

I had few users that used to log in into the server machine running a special program with remote desktop connection. Everything worked fine until i installed on the server Active Directory so i can assign private folders to the users and i added them to the domain controller under active directory. At installation active directory asked the remote connection license server to be restarted which it did. After reboot the users can't log in anymore with remote desktop connection. I verified if they are members of the remote desktop connection and they are. When they log in they get the attached screen.


Untitled.png
Avatar of helpnet
helpnet
Flag of Australia image

Open a console with Active Directory users and computers, create a group for the users that need access to terminal services on the domain controller, and add the users.

Go to the container where Domain controller is and open the default domain controllers policy.

Security Settings | Local Policy | User Rights Assignment.

Find the setting, allow logon through terminal services, and add the group you created above.

Make sure they do not have the right to Shutdown the system.
ASKER CERTIFIED SOLUTION
Avatar of helpnet
helpnet
Flag of Australia image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of dontseme
dontseme

Have you check the user account properties in AD to allow remote login?
Avatar of Daniel Baies

ASKER

how do i get to 'Security Settings | Local Policy | User Rights Assignment.' ?
Sorry the location for group policies has changed in Server 2008.

Click on Start | Administration Tools | Group Policy Management

In the console that opens

Expand Forest, Expand the Domain, and go to group policy objects.

Open the Defaul Domain Controllers Policy.

In here it is
Computer Configuration\Windows Settings\Local Policies\User Rights Assignment

And on Server 2008 it is "Allow log on through Remote Desktop Services" that you need to change.
Terminal Services = a type of RDP (Remote Desktop Protocal) service.
found it  at the end.

Thank you