I recently promoted a new server to Domain Controller and since then new users added to the remote desktop users get the whole "To log on to this remote computer, you must be granted the Allow log on throught Terminal Services bit...." bit. I am not sure the promoted server is related to the issue but at any rate when I go to the Local Security Policy "security Settings\local Policies\User Rights Assignment" the Allow log on through Remote Desktop Services add user button is grey out. I hate greyed out buttons.
Anyway, in Group Policy Management when right click to edit the "Default Domain Controllers Policy" I get a "Failed to open the Group Policy Object" and the details say "The system cannot find the path specified". So, as result I am not able to enable/edit "Allow log on through Terminal Services". The Group Policy Management Editor does not seem to be working at all. Any suggestions?