Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Add Domain User to Local Remote Desktop Group via Group Policy

Posted on 2013-05-15
6
Medium Priority
?
560 Views
Last Modified: 2013-07-10
I am looking for a way to add a domain user account to their workstations Remote Desktop group via GP.

Basically all of our users should have RDP access to their own office desktops here in the office. We have noticed that some users are missing out of that group therefore do not have RDP access to their machines. Rather than manually checking this group and adding their domain user accounts individually, is there a way this can be done centrally? I assume GP would be the best way to go about doing this but I am opened to other 3rd party solutions as well.

Any suggestions would be appreciated.

About the environment:

Desktops: Windows 7 Pro x64
Servers: Server 2008 R2
Domain Controllers: Mostly Server 2008 R2
Domain Level: 2003
0
Comment
Question by:GR JN
6 Comments
 
LVL 70

Expert Comment

by:KCTS
ID: 39168816
0
 

Author Comment

by:GR JN
ID: 39168859
Thanks but we are not looking to add a AD group to the Local RDP group. We are looking to add the AD user whom the machine belongs to. Is there a way to add any user account that has logged into the machine to the local RDP group?
0
 

Expert Comment

by:NKRC
ID: 39169018
You can use WinVNc . This is a third party software that you can install in the users system. They just need to put the IP and will get the remote control of the others system.
0
Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

 

Author Comment

by:GR JN
ID: 39169253
Not sure how this will help me out here. I do not need remote access to the users desktop.
0
 
LVL 57

Expert Comment

by:McKnife
ID: 39169547
Hi.

If you used restricted groups and added the group "domain users" to the local group remote desktop users, you would be fine. Remember, only who may login locally may also login via RDP, so this should not tear up a security hole.
0
 
LVL 4

Accepted Solution

by:
vak73 earned 1000 total points
ID: 39189984
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

For anyone that has accidentally used newSID with Server 2008 R2 (like I did) and hasn't been able to get the server running again because you were unlucky (as I was) and had no backups - I was able to get things working by doing a Registry Hive rec…
Group policies can be applied selectively to specific devices with the help of groups. Utilising this, it is possible to phase-in group policies, over a period of time, by randomly adding non-members user or computers at a set interval, to a group f…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

783 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question