Allow Remote Desktop login Windows 2003 Member Server


I have 2003 member server in a windows 2003 domain, and need to configure terminal services.

Could you please precisely tell me what Group Policies and other settings I need to set, so that this would work?

I would like to have a specific Group Policy, and that the user is a member only of that policy, as to simplify things for later.
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

bbaoIT ConsultantCommented:
do you mean you need the specific information for configuring Terminal Services with W2K3's Group Policy (e.g to allow only domain users to access the TS), or also for the generation information about how to enable Terminal Services on W2K3?
Jian An LimSolutions ArchitectCommented:
but the best thing is to go through the the group policy settings from microsoft which can be found here
(download the windows server 2003 sp 2 group policy settings)
The 7 Worst Nightmares of a Sysadmin

Fear not! To defend your business’ IT systems we’re going to shine a light on the seven most sinister terrors that haunt sysadmins. That way you can be sure there’s nothing in your stack waiting to go bump in the night.

mrmutAuthor Commented:
Thanks all, these are fine - but partial. - I configured this out, however the user's can't connect. I think I've done Group Policies well, something else looks like blocking user logon.

Any ideas, or more comprehensive guide?
mrmutAuthor Commented:
(It is a terminal server 2003 under a domain, a member server)
Jian An LimSolutions ArchitectCommented:
can you do a rsop (from the group policy management) on the users to see the effective group policy?

when you say users cant connect, did they see a pop up screen or what is the error message?
Jian An LimSolutions ArchitectCommented:
have you given user access to RDP ?
They do have to be an administrator on the server to be able to connect?  Without that, you cannot have them RDP into it.

mrmutAuthor Commented:
rsop works fine, they are in a group that is given privleges. From all I can see, they should be able to connect, but it doesn't work.

If set admins, it works.
Jian An LimSolutions ArchitectCommented:
can you also add them into remote desktop users group ? (local group)
The Remote Desktop Users group will not work.  Because this is for admin mode, they absolutely must be part of the local administrators group.  

The only way around it is to convert the system to a full TS/RDS host, and reinstall your applications, and this can incur a lot of overhead and will tend to break a lot of "server level" applications.  

mrmutAuthor Commented:
OK, so - how to make it work? :)
Jian An LimSolutions ArchitectCommented:
the OP says it is  terminal services, I am very sure you don't need admin rights to logon to terminal services

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2003

From novice to tech pro — start learning today.