Simon Fanning
asked on
Limit RDP Users Desktop Screen
Hi experts - I have a client with a deliverable due on Monday.. so I'm under the gun...
Basically we need users from the AD Global Security Group, "company rdpusers" to receive a limited desktop with just the one icon and prevent them from creating any additional shortcuts, using shortcut keys etc...
I've been working on this for a couple of days and have found out how to lock this down for all users, but I just want this for the specific user group...
Any thoughts or advise would be most welcome!
Basically we need users from the AD Global Security Group, "company rdpusers" to receive a limited desktop with just the one icon and prevent them from creating any additional shortcuts, using shortcut keys etc...
I've been working on this for a couple of days and have found out how to lock this down for all users, but I just want this for the specific user group...
Any thoughts or advise would be most welcome!
ASKER
Thanks Michael, but the client does not want RDS on their server, they are very strong on this, they want a pure RDP solution.
So that's why I was trying to have a specific RDP security group receive a unique desktop when they RDP to the server, with just the one icon for the application required.
So that's why I was trying to have a specific RDP security group receive a unique desktop when they RDP to the server, with just the one icon for the application required.
Not sure I understand your response to the suggestion Michael provided.
Publishing an app via RDP limits the authorized people to what you asked for.
If you do not have licensed RDS, your request can not be done.
Publishing an app via RDP limits the authorized people to what you asked for.
If you do not have licensed RDS, your request can not be done.
ASKER
Yes, an RDS solution would provide the answer to the issue at hand. However, my client does not want RDS tunnels to (upto) 300 users accessing this application as this solution architecture has been problematic in the past.
They would like their users to have an RDP link to the server whereupon they will be presented with a desktop with just the one icon for the application required.
Thanks
Simon
They would like their users to have an RDP link to the server whereupon they will be presented with a desktop with just the one icon for the application required.
Thanks
Simon
I am uncertain the distinction you are making based on your client currently have.
Does your client license RDP to the 300 users?
An issue that might not have worked in the past might have been addressed over time and might be worth while to try.
You could take the same amount of tine trying to create a Gop that applies to users an redacts ...
The other option to try with mandatory profiles.
To try removing all options except for the single app.
If not mistaken, the published application can be restricted to specific users, groups.
Try it, it cost you nothing. See if you publish this cert and try to have one of these users confirm its operation.......
At least you'll have a basis on which to assess whether the new implementation of publishing an app is better these days versus the client's prior experience.
Does your client license RDP to the 300 users?
An issue that might not have worked in the past might have been addressed over time and might be worth while to try.
You could take the same amount of tine trying to create a Gop that applies to users an redacts ...
The other option to try with mandatory profiles.
To try removing all options except for the single app.
If not mistaken, the published application can be restricted to specific users, groups.
Try it, it cost you nothing. See if you publish this cert and try to have one of these users confirm its operation.......
At least you'll have a basis on which to assess whether the new implementation of publishing an app is better these days versus the client's prior experience.
This question needs an answer!
Become an EE member today
7 DAY FREE TRIALMembers can start a 7-Day Free trial then enjoy unlimited access to the platform.
View membership options
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
More info here.
Then the users will just click the icon on their desktop, and it will open the app, running on the RDP Server, and run like it is local.
No remote desktop, just the apps you provide them.
The users won't know the difference.