Hi Guys,
We would like to limit RDP users from viewing / accessing folders in C: drive on a specific server.
Such as C:\PROGRAM FILES, C:\WINDOWS, etc
Users have dedicated folders to which they have shortcuts on the desktop, thus they don't need to browse folders.
One way is to setup a security group for RDP users
Then add a Deny permission entry for this group on C: root
Thus folders in C: root should be visible to everyone, but the RDP users
Any ideas, Is this safe to do?
The RDP users are easily identifiable, and we can put them in a group.
My idea was to put a DENY list-folder / read data option for this group on "C-root".
I've done this for a test-folder and seems to be working.
I agree, if the user knows the folder (tree), they would still be able to navigate, but at least they will be some restriction.
I just don't want to mess with the Windows installation, or structure in C: root