I have three servers into my secta domain.
A-DEV Virtual Machine - Windows Server 2003 Std. Edition
A-Main - Virtual Machine - Windows Server 2003 Std. Edition
A-DC (Domain Control) - Windows Server 2003 Std. Edition.
The following users "Ly" from the "A-DC" want have access to my others servers "A-MAIN" into my domain name "secta"
FYI, "Ly" is members of on my "A-DC" (Domain Control) servers. Members of :
- domain users
- Remote deskotp
- SSLVPN Users
- VPN Users.
"Ly" try to log in remotely to "A-MAIN" but the following attached 'ly-secat' error appear .
! To log on to this remote computer, you must be granted the Allo log on throught Terminal Services right. By default, members of the Remote Desktop Users group have this right. If you are not a member of the Remote Desktops users group or another group that this right, or if the remote deskotp users group does not have this right, you must be granted this right manually.
So as a solutions in order to gave her a fast access to to "A-MAIN" Server I've add her to the Administrator Members and now he has access. Plus he hass access to all folders on the server because he is the administrators group :( so I need a solutions please !!!
1. I don't want that user to be an administrator... What Should I do to give him access to 'A-main' without being a member of Administrators groups?
Please see images.