Group Policies for RDS clients

I have a 2012 R2 server running Remote Desktop Services.  I have approximately 20 clients that I have given access to this server.  I have setup a Group Policy for these 20 users called "Enable RDS" and it is in the xyz domain container.  I have the policy doing a few minor things like locking down the local c: drive, removing control panel, etc. for these 20 users.  The problem is that the group policy is taking affect for these 20 users when they login to the xyz domain on their local computer as well as on the RDS server.  My quandry is how do I specify that I only want these policies to be in effect when they login to the RDS server...not when they login to their local pc's?
b428555Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

GlingoSystem AdministratorCommented:
Hi,

You should set a loopback to link the GPO to your RDS server, here's a http://technet.microsoft.com/de-de/library/cc779327%28v=ws.10%29.aspxlink about this. Also you should link your GPO to the RDS server and in the security tab you should remove authenticated user group and add the computer account and the special user group.
0
RizzleCommented:
This depends on how the policies are applying,

If user side a thing you can do is enable loopback processsing on the policy and then apply this to RDS servers rather than the users then atleast the policy will effect only people who log onto the RDS servers or

If the policy is computer side then separate the RDS servers from the local laptops/workstations (Put them in separated OU's RDS servers in one and then clients in another) then apply the policy only to the RDS servers.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Mohammed KhawajaManager - Infrastructure:  Information TechnologyCommented:
Create a loopback policy, move your RDS server to an OU of itself and then apply the policy to that OU.
0
b428555Author Commented:
OK.  Thanks all of you for the recommendations.  I see that I have to do some further investigation on how to configure loopbacks and what the ramifications might be if I move my server into an OU of it's own.  I will accept all of your solutions as I believe you all have led me on the path that I needed.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2012

From novice to tech pro — start learning today.