Solved

App Server Access

Posted on 2011-09-16
7
243 Views
Last Modified: 2012-06-27
We have a SBS 2011 based network. We would like to give our outside app support team access to the app server via RWW. Right now only members of the Domain Admin group are able to see servers through RWW. Going through RWW, is there any way to limit that to only that one server and have them as a member of a more limited group.  Is there another method that could be used other than RDP through a VPN. The app server is Windows 2008 R2 based.

Thank you.
0
Comment
Question by:normajm400
  • 5
  • 2
7 Comments
 
LVL 77

Expert Comment

by:Rob Williams
ID: 36551142
Normally to control you would go to the SBS console under users and groups | users | Remote access where you can grant the RWW access. Then in the same location under computers you can select to which computers they can have access. However for a user to have the servers in the list they have to be an network administrator and then all servers and computers are added and you cannot deny access.

The simple way would be to make them a network administrator which would give them RWA to servers, and then in active directory under the user's properties, on the Account tab, click the "Logon to" button. By default it is set to all computers. You can specify the computer/server to which you want to grant them access.
0
 

Author Comment

by:normajm400
ID: 36551894
"Logon to" is greyed out when selecting servers...
0
 

Author Comment

by:normajm400
ID: 36551992
Sorry, was looking in the wrong window.  I see what you mean now.  I will give that a try.
0
Scale it in WD Gold

With up to ten times the workload capacity of desktop drives, WD Gold hard drives employ advanced technology to deliver among the best in reliability, capacity, power efficiency and performance.

 

Author Comment

by:normajm400
ID: 36552068
Okay - if they are added to domain admins, they must have permission to log onto the DC in order to come in through RWW.  So, unfortunately that doesn't work as intended.
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 36552471
They should be able to authenticate to the domain without being able to log on to the DC. That is a different process. It's possible that is handled differently with RWW but it works well with VPN so I thought the same here.
0
 

Accepted Solution

by:
normajm400 earned 0 total points
ID: 36955823
It looks like for now the only option is VPN.  Thanks for the suggestions.
0
 

Author Closing Comment

by:normajm400
ID: 36978185
The other suggestions were not applicable.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

If you are a user of the discontinued Microsoft Office Accounting 2008 (MSOA) and have to move to a new computer running Windows 8, you will be unhappy to discover that it won't install.  In particular, Microsoft SQL Server 2005 Express Edition (SSE…
A quick step-by-step overview of installing and configuring Carbonite Server Backup.
This Micro Tutorial demonstrates using Microsoft Excel pivot tables, how to reverse engineer competitors' marketing strategies through backlinks.
Learn how to create flexible layouts using relative units in CSS.  New relative units added in CSS3 include vw(viewports width), vh(viewports height), vmin(minimum of viewports height and width), and vmax (maximum of viewports height and width).

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

24 Experts available now in Live!

Get 1:1 Help Now