How to log/monitor RDP sessions on Win 2003 terminal server

How can i see who connected to my server through remote desktop connection on my Win 2003 terminal server? Is there a log file for that?
PazderkaAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
yelbaglfConnect With a Mentor Commented:
Here's a good KB about auditing.
http://support.microsoft.com/kb/300549

You can check the security log in Event Viewer for this.


Here's a good overview of ObserveIT.
http://www.petri.co.il/record-and-audit-terminal-citrix-and-rdp-session-%E2%80%93-observeit-product-overview.htm
0
 
Wyoung2100Commented:
for active connections its under administrative tools and terminal server manament console. as long as you have administrative rights you can see who is on and remotely view thier sessions with or without there knowlege (configured in their AD object). You must do this remotely to get control but has been a valuable tool for me as I find many abusers this way
0
 
Llacy80Commented:
You can also quickly view this by right clicking on the task bar and going to Task Manager --> and then users. It will give you a quick overview of who is logged on.
0
 
yelbaglfConnect With a Mentor Commented:
You could also use something like quser.

You can use this command to find out if a specific user is logged on to a specific terminal server. Query user returns the following information:

The name of the user
The name of the session on the terminal server
The session ID
The state of the session (active or disconnected)
The idle time (the number of minutes since the last keystroke or mouse movement at the session)
The date and time the user logged on

http://technet.microsoft.com/en-us/library/cc788125(WS.10).aspx

This can also be put into vbscript if needed.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.