Terminal Server 2003 Group Policy - "to log on to this remote computer" - Security Groups
Posted on 2011-02-10
I'm trying to establish a second organizational group that contains a second Security Group (call them orgB and secB). But none of the users I set up in the new Security Group (secB) can log in to the Terminal Server.
There is an established organizational group and security group (call them orgA and secA) that works fine - any user set up in secA can log in fine - and the group policy tied to this organizational group is applied correctly. Below is the configuration chain for the working set up.
Organizational group (OrgA) => User added => User is Member of Security group (secA) => Then the security group (SecA) is a member remote desktop users. There is a GPO assigned to OrgA.
I have attempted to duplicate the settings of the set up that is working - except for different names on the organizational group, security group, and GPO. I'm creating new users and I can get them to log in successfully only when they are a member of the Security group A.
I'm running two boxes. The first is a domain controller running server 2003. The second is a terminal server running server 2003.
I've checked the common items that I've found in the knowledge base. Everything seems to be identical.