Solved

Allow user access to just one server

Posted on 2012-04-13
6
336 Views
Last Modified: 2012-04-16
I need to give access to a remote user and allow them administrative access to just one server on my Windows 2003 network.  That server is also a Windows 2003 server.  What is the best way to do this?
0
Comment
Question by:Lanee Kirby
6 Comments
 
LVL 21

Expert Comment

by:Joseph Moody
Comment Utility
Add them to the administrators group and enable remote desktop.
0
 
LVL 21

Expert Comment

by:Joseph Moody
Comment Utility
That would be the local administrators group of the domain member server.
0
 
LVL 17

Expert Comment

by:Anuroopsundd
Comment Utility
If you just want to give access to one server.. you can add that user to local administrator group.

If the user is not part of the Domain then you can create a local account on that system and share account information.
0
Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

 
LVL 17

Accepted Solution

by:
bigeven2002 earned 250 total points
Comment Utility
Hello,

The way we've done it is on the 2003 server itself, go to Start and right-click on My Computer and select Manage.  In the Computer Management window, on the left pane, expand Local Users and Groups and highlight Groups.  On the right pane, double-click Adminstrators.  In the properties window, click Add and add the remote user to the list, then Apply.  If the user is already logged in, they will need to logoff first for the change to take effect.
0
 
LVL 9

Assisted Solution

by:bill_lynch
bill_lynch earned 250 total points
Comment Utility
Greetings:

I'd also lock it down on the AD side, i.e. allow the AD account to only log into one computer:'

In AD, on the user properties on the account tab, click the LogOnTo button then click the following computers and select the computer you want the user to be limited to.
0
 
LVL 38

Expert Comment

by:ChiefIT
Comment Utility
What are you trying to allow this person to do on your AD domain controllers?

If you need help like this, you should do a netmeeting and allow them to control the desktop. BUT, monitor everything they do.

On an AD server, there is NO local administration. So, you can't have them logon as a local admin.

You can add them to remote desktop, but what permissions are you going to give them as a remote desktop user?

Personally, I would fix things on my AD all by myself and tell that person who wants access to take a flying leap.
0

Featured Post

Zoho SalesIQ

Hassle-free live chat software re-imagined for business growth. 2 users, always free.

Join & Write a Comment

Starting in Windows Server 2008, Microsoft introduced the Group Policy Central Store. This automatically replicating location allows IT administrators to have the latest and greatest Group Policy (GP) configuration settings available. Let’s expl…
Introduction You may have a need to setup a group of users to allow local administrative access on workstations.  In a domain environment this can easily be achieved with Restricted Groups and Group Policies. This article will demonstrate how to…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

6 Experts available now in Live!

Get 1:1 Help Now