Solved

can't RDP into server 2012 server in a workgroup (not on domain)

Posted on 2014-11-26
7
539 Views
1 Endorsement
Last Modified: 2015-01-18
I have a 2012 Server that is not on a domain, it is in a workgroup. I have a computer on the same LAN/SUBNET and I cannot log into it remotely. I get the following error:

To sign in remotely, you need the right to sign in through Remote Desktop Services. By default, members of the Remote Desktop Users group have this right. If the group you're in doesn't have this right, or if the right has been removed from the Remote Desktop Users group, you need to be granted this right manually.

Remote Services is enabled on this server.
1
Comment
Question by:Gelly77
7 Comments
 
LVL 88

Expert Comment

by:rindi
ID: 40466907
Have you added the user to the remote desktop user's group, as suggested in the message you got?
0
 
LVL 3

Assisted Solution

by:TropicalBound
TropicalBound earned 166 total points
ID: 40466912
To grant this access, open the Local Security Policy

Expand Local Policies and select User Rights Assignment.  Right click on the policy named “Allow log on through Remote Desktop Services” and select Properties.

Add the user(s) to the policy.

TB
0
 
LVL 95

Assisted Solution

by:Lee W, MVP
Lee W, MVP earned 334 total points
ID: 40466985
While TropicalBound's suggestion may work, the proper way to do this is as rindi said.

Open computer management from the administrative tools or run compmgmt.msc from an administrative command prompt and expand Local Users and Groups under System Tools.  Click on Groups and then in the middle pane with the list of groups, open Remote Desktop Users and add the account you want to log in with to that group.  It SHOULD allow you to connect without a log off / on or reboot.

See graphic below.RD Users in Computer Management
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 

Author Comment

by:Gelly77
ID: 40470329
I have tested a few different solutions:
1. Added username to Remote Desktop Group - did not work
2. Added username to Allow log on through Remote Desktop Services in local security policy - did not work
3. Remove Everyone group from Deny log on through Remote Desktop Services in local security polity- worked but this cannot be used as it leaves RDP open to everyone.

Any Suggestions?
0
 
LVL 95

Assisted Solution

by:Lee W, MVP
Lee W, MVP earned 334 total points
ID: 40470738
The DEFAULT setting lists NO ONE / NO GROUP in Deny log on through Remote Desktop Services
Why did you change this?

Windows permissions are MOST RESTRICTIVE.  And they do NOT permit something if not EXPLICITLY granted.  It sounds like you broke this yourself when you (or someone) added the everyone group to the Deny log on through Remote Desktop Services.

Fix that.  Then grant only those you want to have access.  Post SCREEN SHOTS of errors before you make additional changes (once this has been done).
0
 

Accepted Solution

by:
Gelly77 earned 0 total points
ID: 40546492
I had to remove the everyone and the administrators group from the deny logon through remote desktop services. All is working now!!!!
0
 

Author Closing Comment

by:Gelly77
ID: 40556015
My solution resolved the issue. The comments from the other submitters assisted me in getting to the solution.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

I don't know if many of you have made the great mistake of using the Cisco Thin Client model with the management software VXC. If you have then you are probably more then familiar with the incredibly clunky interface, the numerous work arounds, and …
Sometimes drives fill up and we don't know why.  If you don't understand the best way to use the tools available, you may end up being stumped as to why your drive says it's not full when you have no space left!  Here's how you can find out...
In this Micro Tutorial viewers will learn how to use Boot Corrector from Paragon Rescue Kit Free to identify and fix the boot problems of Windows 7/8/2012R2 etc. As an example is used Windows 2012R2 which lost its active partition flag (often happen…
This tutorial will walk an individual through the process of installing of Data Protection Manager on a server running Windows Server 2012 R2, including the prerequisites. Microsoft .Net 3.5 is required. To install this feature, go to Server Manager…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question