Solved

Group Policy inheritance question

Posted on 2014-10-14
2
157 Views
Last Modified: 2014-10-14
I have a problem on a live 2003 server - need to edit policies (I think) to enable users to login thru RDP.

Now, admins already have that privilege, and I would need to set "Allow log on through Terminal Services" policy to contain my users.

Now, if I link this policy - will it OVERRIDE default domain policy, or ADD to the list of users that login?

I am _VERY_ afraid not to lock myself out.
0
Comment
Question by:mrmut
2 Comments
 
LVL 13

Accepted Solution

by:
Rizzle earned 500 total points
ID: 40381132
This should add users to allow list to use RDP but as a precaution put domain admins or your admins in the list aswell.
0
 
LVL 24

Expert Comment

by:VB ITS
ID: 40381320
I think it'll replace the list of users. Easier to just do what Roshan has recommended above, i.e. add the existing accounts that already have RDP access into your new policy, add the new users/groups that require RDP access, then link the new policy.

If it's just a single server though, you can just modify the Remote Desktop Users group in System PropertiesRemote tab > Select Remote Users... at the bottom > add the required users/security group to the list. No need to mess with Group Policies that way.
0

Featured Post

Networking for the Cloud Era

Join Microsoft and Riverbed for a discussion and demonstration of enhancements to SteelConnect:
-One-click orchestration and cloud connectivity in Azure environments
-Tight integration of SD-WAN and WAN optimization capabilities
-Scalability and resiliency equal to a data center

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Preface Having the need * to contact many different companies with different infrastructures * do remote maintenance in their network required us to implement a more flexible routing solution. As RAS, PPTP, L2TP and VPN Client connections are no…
On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
In a recent question (https://www.experts-exchange.com/questions/29004105/Run-AutoHotkey-script-directly-from-Notepad.html) here at Experts Exchange, a member asked how to run an AutoHotkey script (.AHK) directly from Notepad++ (aka NPP). This video…

807 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question