Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Windows 2008 Server RDP & Group Policy

Posted on 2013-06-11
3
Medium Priority
?
226 Views
Last Modified: 2014-06-09
I have a new windows 2008 server running remote access for our VPN clients. When I join it to our AD I cannot RDP to it but I can VNC to it. As soon as I remove it from the domain & put it in a workgroup RDP will work ok.
Where in the default domain controllers policy would that be stopped? or am I barking up the wrong tree totally & its something else
0
Comment
Question by:Richard Gray
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 6

Accepted Solution

by:
adriaanvw earned 2000 total points
ID: 39237185
Hi,

First, check your firewall rules once you have joined the domain, ensuring RDP is allowed on the new server. (http://social.technet.microsoft.com/Forums/en-US/windowsserver2008r2rds/thread/811b722f-78e4-479c-afc8-bbfd604447fa)

You need to add the server to the allowed list for RDP access in AD. You can achieve this as follows:

Two group policy changes should do the trick, followed by a gpupdate /force or waiting for the policy to be distributed to domain members/clients:

Computer Configuration > Administrative Templates > Network > Network Connections > Windows Firewall > Domain Profile > Allow inbound Remote Desktop exception.  Note that I recommend limiting the IP addresses that have access as explained in the notes of that policy, if possible, as a best practice.

Computer Configuration > Administrative Templates > Windows Components > Remote Desktop Services > Remote Desktop Session Host > Connections > Allow users to connect remotely using Remote Desktop Services

Full article here: http://www.nojokeit.com/2011/02/enable-remote-desktop-in-server-2008-r2.html
0
 

Author Comment

by:Richard Gray
ID: 39237255
Had done the first part anyway, the second part I dont have as its a Windows 2003 AD so I dont have the option Remote Desktop Services its still terminal services
0
 

Author Comment

by:Richard Gray
ID: 39271697
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

For anyone that has accidentally used newSID with Server 2008 R2 (like I did) and hasn't been able to get the server running again because you were unlucky (as I was) and had no backups - I was able to get things working by doing a Registry Hive rec…
After seeing many questions for JRNL_WRAP_ERROR for replication failure, I thought it would be useful to write this article.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question