Solved

Group Policy inheritance question

Posted on 2014-10-14
2
165 Views
Last Modified: 2014-10-14
I have a problem on a live 2003 server - need to edit policies (I think) to enable users to login thru RDP.

Now, admins already have that privilege, and I would need to set "Allow log on through Terminal Services" policy to contain my users.

Now, if I link this policy - will it OVERRIDE default domain policy, or ADD to the list of users that login?

I am _VERY_ afraid not to lock myself out.
0
Comment
Question by:mrmut
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 13

Accepted Solution

by:
Rizzle earned 500 total points
ID: 40381132
This should add users to allow list to use RDP but as a precaution put domain admins or your admins in the list aswell.
0
 
LVL 24

Expert Comment

by:VB ITS
ID: 40381320
I think it'll replace the list of users. Easier to just do what Roshan has recommended above, i.e. add the existing accounts that already have RDP access into your new policy, add the new users/groups that require RDP access, then link the new policy.

If it's just a single server though, you can just modify the Remote Desktop Users group in System PropertiesRemote tab > Select Remote Users... at the bottom > add the required users/security group to the list. No need to mess with Group Policies that way.
0

Featured Post

On Demand Webinar: Networking for the Cloud Era

Did you know SD-WANs can improve network connectivity? Check out this webinar to learn how an SD-WAN simplified, one-click tool can help you migrate and manage data in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
Do you want to know how to make a graph with Microsoft Access? First, create a query with the data for the chart. Then make a blank form and add a chart control. This video also shows how to change what data is displayed on the graph as well as form…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question