Solved

How to log/monitor RDP sessions on Win 2003 terminal server

Posted on 2011-02-23
4
753 Views
Last Modified: 2013-11-21
How can i see who connected to my server through remote desktop connection on my Win 2003 terminal server? Is there a log file for that?
0
Comment
Question by:Pazderka
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 11

Accepted Solution

by:
yelbaglf earned 500 total points
ID: 34966189
Here's a good KB about auditing.
http://support.microsoft.com/kb/300549

You can check the security log in Event Viewer for this.


Here's a good overview of ObserveIT.
http://www.petri.co.il/record-and-audit-terminal-citrix-and-rdp-session-%E2%80%93-observeit-product-overview.htm
0
 
LVL 3

Expert Comment

by:Wyoung2100
ID: 34974090
for active connections its under administrative tools and terminal server manament console. as long as you have administrative rights you can see who is on and remotely view thier sessions with or without there knowlege (configured in their AD object). You must do this remotely to get control but has been a valuable tool for me as I find many abusers this way
0
 
LVL 4

Expert Comment

by:Llacy80
ID: 34974112
You can also quickly view this by right clicking on the task bar and going to Task Manager --> and then users. It will give you a quick overview of who is logged on.
0
 
LVL 11

Assisted Solution

by:yelbaglf
yelbaglf earned 500 total points
ID: 34976162
You could also use something like quser.

You can use this command to find out if a specific user is logged on to a specific terminal server. Query user returns the following information:

The name of the user
The name of the session on the terminal server
The session ID
The state of the session (active or disconnected)
The idle time (the number of minutes since the last keystroke or mouse movement at the session)
The date and time the user logged on

http://technet.microsoft.com/en-us/library/cc788125(WS.10).aspx

This can also be put into vbscript if needed.
0

Featured Post

On Demand Webinar - Networking for the Cloud Era

This webinar discusses:
-Common barriers companies experience when moving to the cloud
-How SD-WAN changes the way we look at networks
-Best practices customers should employ moving forward with cloud migration
-What happens behind the scenes of SteelConnect’s one-click button

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Some time ago I faced the need to use a uniform folder structure that spanned across numerous sites of an enterprise to be used as a common repository for the Software packages of the Configuration Manager 2007 infrastructure. Because the procedu…
Know what services you can and cannot, should and should not combine on your server.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
How to Install VMware Tools in Red Hat Enterprise Linux 6.4 (RHEL 6.4) Step-by-Step Tutorial

735 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question