We are running a Windows 2003 SBS domain with about 50 users. We now have a requirement to add a new AD user that will not have access to any of the normal Domain based file shares as all other authenticated users. This new AD user will log onto our Windows 2008 R2 Terminal Server in order to launch a specific application.
How can we restrict this user so the account is restricted from accessing anything except for the application they need to run on the Terminal Server?
Thanks in advance -