Remote desktop connection script

Hello guys...

I used this script to allow connection to remote desktop connection on client computer..

Disable
reg add "HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server" /v "fDenyTSConnections" /t REG_DWORD /d "1" /f

Enable
reg add "HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server" /v "fDenyTSConnections" /t REG_DWORD /d "0" /f

I know we can also do it via group policy.  I'm using 2003 server as domain controller....

i need a solution to add to this script or another one: I need only administrator who can have access to remote connection...i.e can we add administrator through a batch script....
Or is there another solution...I don't want to do it manually on client's pc...

Thanks for your help////
techlabtestAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
techlabtestConnect With a Mentor Author Commented:
i tried what you told me and it doesn't work....I find a solution to my problem:

do it through  group policy...Under com config, windows settings, security settings, local policies, user rights assignment..Allow log on on through Terminal Services or Remote Desktop Connections..Add the domain admin inside..and it works fine...

Please tell me wht you think before i close that query.

Thanks
0
 
peter197911Commented:
Local administrators / domain administrators are automatically member of the remote desktop group of domain computers.

So if you run a reg update by group policy that enabled "Remote Control by Remote Desktop" i think you will be fine.

Also, remember to open a port in the firewall (if it's closed by default)
0
 
techlabtestAuthor Commented:
No it' doesn't work!

Thanks
0
Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

 
peter197911Commented:
Ok,
When you configure remote desktop to : Allow remote connections from all computers.

(in windows, system properties, remote)

Does it work then>?   If it does,  then your reg key way of enabling RDP is not complete.
0
 
peter197911Commented:
That sounds like an excellent solution.

Although, i think i would not use the Domain Admin account but a  "Support account" with the proper permissions.

Good to see you find a proper solution. When i'm in a domain environment i will test the thing with the domain admin and access to RDP on a server.
0
 
techlabtestAuthor Commented:
I have test my solution in a domain environment and it works...Really nice...
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.