Solved

Allow non administrators to access Windows 7 clients via RDP

Posted on 2014-04-14
3
550 Views
Last Modified: 2014-04-14
Hi,
I have been looking for a way to allow a Jr Admin who does not have administrator or domain admin rights to RDP into our Windows 7 machines for support.  I don't really want to touch all 50 of our PCs and add this person manually to the RD Users group locally.  Is there a way within AD/Group Policy to allow this person RDP rights into our Windows 7 machines without giving this person more rights?  Thanks so much!
0
Comment
Question by:cbsykes
3 Comments
 
LVL 3

Expert Comment

by:aces4all00
ID: 40000603
You have a couple of options.  You can make use of restricted groups or write a script that will add a domain security group to the Remote desktop users group then add your support personnel to that group.  See http://blogs.technet.com/b/heyscriptingguy/archive/2010/08/19/use-powershell-to-add-domain-users-to-a-local-group.aspx for one way you can do that.

Another alternative would be to set things up so you're support personal can offer remote assistance.  This is a feature of Windows that will allow a support technician to shadow a users session with the user logged in and request control from the user if they need it.  See http://community.spiceworks.com/how_to/show/210-offer-unsolicited-remote-assistance-to-ms-domain-computers for more information.
0
 
LVL 14

Accepted Solution

by:
dmwynne earned 500 total points
ID: 40000612
You can create a group policy to do this.  Create a group in Active Directory and then create  a GPO to add  that group to the Remote Desktop Users group.  

Steps are detailed in this Technet article:

http://social.technet.microsoft.com/wiki/contents/articles/17671.how-to-add-domain-usersgroup-to-remote-desktop-users-group-on-servers-using-group-policy.aspx
0
 

Author Comment

by:cbsykes
ID: 40000835
Thanks dmwynne.  Exactly what I was looking for.
0

Featured Post

What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

Join & Write a Comment

You might have come across a situation when you have Exchange 2013 server in two different sites (Production and DR). After adding the Database copy in ECP console it displays Database copy status unknown for the DR exchange server. Issue is strange…
Possible fixes for Windows 7 and Windows Server 2008 updating problem. Solutions mentioned are from Microsoft themselves. I started a case with them from our Microsoft Silver Partner option to open a case and get direct support from Microsoft. If s…
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…
The Task Scheduler is a powerful tool that is built into Windows. It allows you to schedule tasks (actions) on a recurring basis, such as hourly, daily, weekly, monthly, at log on, at startup, on idle, etc. This video Micro Tutorial is a brief intro…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now