Remote accessing desktops issues

Some machines I can't seem to access using the UNC path \\someworkstation\c$ I get a rejected message when trying the domain admin account. If I try to PSEXEC to these machines I get access denied and if I try to remote desktop as the domain administrator I get the connection was denied because the user account is not authorized for remote login. I can log into them locally though. All this seems to stem from removing local admin rights. I noticed an account that said domain admins in the local administrator group which I have no idea why
LVL 2
stlhostAsked:
Who is Participating?
 
rindiCommented:
Add the user accounts you want to logon to the PC remotely with to the "Remote Desktop Users group" under "Local Users and Groups" of that PC (in Computer Management). If you are adding Domain Users Accounts, make sure the users you are adding are from the domain (you can use the Domain\Username syntax to make sure it is the domain account).
0
 
JohnBusiness Consultant (Owner)Commented:
There needs to be an account on the Windows 7 machine which has local admin rights to do this so far as I know.

Do NOT enable the built-in Administrator's account (no need and not good practice), and the user does not need to be Administrator. Just set up an account with a password that has admin rights.

Go to Network and Sharing Center on the problem machine and make sure it is not in Homegroup and is set to use user names AND passwords. Make sure Network Discovery and File and Print sharing are on .

For reference, look at my article on Folder sharing.

http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Windows/A_16639-Folder-sharing-on-modern-machines.html
0
 
stlhostAuthor Commented:
The network and sharing looks exactly the same as it does on my computer.
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

 
JohnBusiness Consultant (Owner)Commented:
Set up an admin account on your problem computer as I suggested to see if that solves the problem.

I can map as you are trying to, although I normally use folder names.
0
 
stlhostAuthor Commented:
All the computers have a local admin account already that we create for recovery purposes. Also I am not sharing folders, just trying remote access them using the dollar sign \\WORKSTATION\C$ and keep in mind I cannot RDP to them either which may have something to do with the first problem
0
 
stlhostAuthor Commented:
Also backup exec can't access these machines either using the domain account if that helps any
0
 
JohnBusiness Consultant (Owner)Commented:
Try the following:

I. Try accessing the machine by IP address instead of computer name (DNS issue).
2. Setting the firewall to allow the network IP range.
0
 
stlhostAuthor Commented:
1) rejected/incorrect username password
2) Endpoint, our firewall is set to exclude our internal network from any type of remote/incoming connections
0
 
JohnBusiness Consultant (Owner)Commented:
In my article that I referenced, I discuss enumerating user names and passwords on the machine needing to be shared. Rindi has suggested the same thing and I agree with him.

Consider enumerating the user names needing to access.

I use Symantec Endpoint Protection myself and for clients and it does not cause issues.
0
 
stlhostAuthor Commented:
Rindi, thanks.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.