• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 433
  • Last Modified:

Microsoft Server 2008 R2 Terminal Services

My company has a published remote app that users used to run a program on our terminal server.  Currently the user can log in by clicking on the desktop icon for the remote app or connect to the terminal server through the old terminal server connection method and run the application.
Is it possible to deny remote desktop access to members of a user group but the user can still run the application through the published app. approach?
Any help would be appreciated.
Phil Chapman
Phil Chapman
1 Solution

There isn't a out of the box way to make this happen. But there are some workarounds possible. I have done this once by creating a script that is executed and direct runs logoff.exe

There are also ways to use group policy or applocker to accomplish this. These threads might help:
Phil ChapmanAuthor Commented:
The logoff.exe works ok.  The user still run the remote desktop app.

Thanks for the help.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Tackle projects and never again get stuck behind a technical roadblock.
Join Now