[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 225
  • Last Modified:

How can we limit access to RDC users connecting to Microsoft 2012 server for POS system?

I have a client getting ready to deploy new retail POS system for three store locations.  The POS software is installed on an Dell server running Microsoft 2012 standard.  The server will be located at main store.  The other two locations will connect via RDC software already purchased from Microsoft.  It appears that out of the box the users that remote into the server have full access to everything on the server.  What would be the best way to limit access to other parts of the server other than the POS software?  Thank you in advance for giving feedback on this question.
1 Solution
On server you can install RemoteApps role and create and distribute rdp file to shops. So users will start rdp file which opens terminal session to server and opens application directly
Don ThomsonCommented:
Make sure that the User Code Passwords given to each of the remote stores is limited to only the apps and folders on the server that they need to do their job.  We just did the same type of setup with a client and we restricted them from just about everything then opened up what they needed to run as they found something that they couldn't do but needed to.  We actually had to install the receipt printers locally on each remote terminal then once they connected to the server we set up a VPN back top their local PC and then double clicked on the Slip printer through a shortcut we set up - It was the only way we could make it work so that the Cash drawer opened properly.
ITSupportGuy1Author Commented:
Thank you for your feedback.  We looked an many different options and this was one that was recommended by the vender as well.  We are going with custom RDC code straight to the POS software.

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Tackle projects and never again get stuck behind a technical roadblock.
Join Now