Allowing printer redirection for a specific group on TS 2008 R2
I have a couple of Terminal Servers that used to allow printer redirection for all users. It was creating havoc for certain departments so I turned it off because 99% of the printers we have around are connected to the network. It turns out that I have 3 users that need the ability to print from home. Right now I have 'do not allow client printer redirection' enabled which has obviously disabled redirection for everyone.
I would like to allow these 3 particular users to redirect their home printers but I am coming up empty on searching. I have found the Configure Printer Redirection technet article that explains how to enable it on a per users basis via the Environment tab on the user, and I realize that I need to change the 'do not allow client printer redirection' policy in order to get that to work. Unfortunately it also looks like that is the default setting for new users.
I am kind of at a loss for what to do from here. I would like to use a Domain level GPO assigned to a printer redirection security group but I am not seeing a way to do that. Any help would be very much appreciated.