We have Windows 2012 DC and windows 7 clients and a Windows 2012 RDP server in our network.
I have a user who likes to RDP into his PC.
This user is able to RDP into the RDP server successfully. But from the RDP server if again RDP to the user PC, I get a message
“To log on to this remote computer, you must be granted the Allow log on through Terminal Services right. By default, members of the Remote Desktop Users group have this right. If you are not a member of the Remote Desktop Users group or another group that has this right, or if the Remote Desktop User group does not have this right, you must be granted this right manually”
I logged into the user PC (that needs to be RDP) and configured two things
Firstly: I went to the system –advanced settings-remote- enabled allow connections from computers running any versions of Remote desktop.
Secondly: On the user PC –Gpedit.msc- Computer configuration-Windows settings-security policy-Local policy-User rights assignment-Allow log on locally – Added the user.
In our AD on the built in OU I can see a Remote desktop users group and I added the user here as well, but still I get the same message.
Any help to sort this much appreciated.