wanted to find out how to set up a group policy on a windows 2003 domain controller that would allow certain users to access it through terminal services. Currently, 2 users are able to access it and i can view them as having local profiles on this server but for some reason a previous user whose profile got corrupted can no longer access it through remote desktop session. I was told that on a domain controller there is no way to add local users and have to do this using active directory users and computers. Which is the correct way to add users to enable them to access this server through terminal services since when i tried using gpedit.msc the option to add users in terminal services is grayed out. thanks.
Transferring FSMO roles is done when an admin wants to split roles between certain Domain Controllers or the Domain Controller holding the Roles has been forcefully demoted using dcpromo / forceremoval
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …