Solved

Remote Desktop User are able "see" and access Network Computers

Posted on 2013-05-24
5
276 Views
Last Modified: 2013-06-03
Hi all.

I was checking our RDS install today, and noticed i was able to see, browse and delete files on the shared folders on windows explorer.

Please check the attached screen shot.

How to prevent this?
ee.JPG
0
Comment
Question by:manolocruz
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
5 Comments
 
LVL 14

Expert Comment

by:Justin Yeung
ID: 39195311
what do you want to prevent?

preventing user from browsing the network? or you want to denied mapping network drive?
0
 

Author Comment

by:manolocruz
ID: 39195423
They are able to browse to any user folder, thats what i dont want, i found a solution by adding a DWORD key into regedit, but i am sure that this is not the best way of doing this.

I already enabled some GPO's, preventing this but looks like they are not working.
0
 

Author Comment

by:manolocruz
ID: 39195427
finishing, i want to prevent them BROWSING THE NETWORK
0
 
LVL 27

Accepted Solution

by:
davorin earned 500 total points
ID: 39195795
The accepted answer in this post reflects my opinion:
http://social.technet.microsoft.com/Forums/en-US/winserverGP/thread/3bc246ab-32ee-40bf-b9e5-d6dd3f1516e8

I would deny access (permissions) to (at) network resources for remote desktop users except to the ones they need. I guess they also need some network resources, so putting TS in separate network is not an option.
0
 

Author Closing Comment

by:manolocruz
ID: 39216899
Thanks very much, leaded me to the solution.
0

Featured Post

Back Up Your Microsoft Windows Server®

Back up all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Active Directory security has been a hot topic of late, and for good reason. With 90% of the world’s organization using this system to manage access to all parts of their IT infrastructure, knowing how to protect against threats and keep vulnerabil…
I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question