We have a terminal server that has a license for up to 50 connections at once. Users connect via RDP to run an application on the server which is quicker than running a thick-client on their desktops (mainly for offsite users). The problem is that there are several admin accounts that need to stay logged in but disconnected due to services that are run specifically under those accounts. I had previously setup disconnect and idle policies under the Terminal Services Configuration that would log off disconnected and idle sessions, but found out the hard way that those previously mentioned admin accounts needed to stay connected after they were bounced by my changes.
Is there a way to setup a GPO or a local policy that will exempt specific users from these policies? I need to keep those two admin accounts active/logged on while all other idle/disconnected sessions need to be logged off. Users, even after repeatedly being told, will not 'log off' but will simply close the RDP box leaving their session open.