Disable RDP Account Access XP

[jaiamma]

Hi,

I've got an up-to-date patched XP Pro SP2 desktop PC with a standard
Linksys WRT54GS V-2 router and DSL. My PC has a non-routable IP
address with automatic selection of gateway and DNS.

I want to remotely access this PC using the RDP host in XP Pro (and I
understand the correct port forwarding). However, I only want one user
account accessible. I want to flag the other user accounts as not
allowed to be accessed remotely (barred from RDP). Any way to do this?
I went to the Computer Management tool but I didn't see this switch in
the User Account properties. Is there some way to get to advanced user
policy settings?

I remember seeing this in Windows Server 2003.

Can this be done in XP Pro?

Thanks,

Tom

 

[Robert L [MVP - Networking]]

You can manage the user who can or can't access the computer by opening properties my computer>remote.

Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
Hi,

I've got an up-to-date patched XP Pro SP2 desktop PC with a standard
Linksys WRT54GS V-2 router and DSL. My PC has a non-routable IP
address with automatic selection of gateway and DNS.

I want to remotely access this PC using the RDP host in XP Pro (and I
understand the correct port forwarding). However, I only want one user
account accessible. I want to flag the other user accounts as not
allowed to be accessed remotely (barred from RDP). Any way to do this?
I went to the Computer Management tool but I didn't see this switch in
the User Account properties. Is there some way to get to advanced user
policy settings?

I remember seeing this in Windows Server 2003.

Can this be done in XP Pro?

Thanks,

Tom

 

[Sooner Al [MVP]]

Hi,

I've got an up-to-date patched XP Pro SP2 desktop PC with a standard
Linksys WRT54GS V-2 router and DSL. My PC has a non-routable IP
address with automatic selection of gateway and DNS.

I want to remotely access this PC using the RDP host in XP Pro (and I
understand the correct port forwarding). However, I only want one user
account accessible. I want to flag the other user accounts as not
allowed to be accessed remotely (barred from RDP). Any way to do this?
I went to the Computer Management tool but I didn't see this switch in
the User Account properties. Is there some way to get to advanced user
policy settings?

I remember seeing this in Windows Server 2003.

Can this be done in XP Pro?

Thanks,

Tom

By default/design local Administrator accounts and limited users in the
Remote Desktop Users Group can access the PC via Remote Desktop...

http://www.microsoft.com/technet/prodtechnol/winxppro/reskit/c08621675.mspx#EFG

I seem to remember a posting by another person that talked about limiting
access to a PC with Remote Desktop by manipulating local users and groups
settings. They only allowed access to one limited user but no admins. I
can't find that post on Google, but if I do I will post it. You may find it
of some help...

Beyond that you could setup and use a Secure Shell (SSH) tunnel to limit
remote access to the PC from a remote site by only activating specific
accounts that could sign on to the SSH server and using a private/public key
pair specific to that user/users. Then you would run Remote Desktop through
the SSH tunnel. That is what I currently do with copSSH and Tunnelier...

http://theillustratednetwork.mvps.org/Ssh/SecureYourcopSSHServer-Vista.html
http://theillustratednetwork.mvps.org/Ssh/Configure-Tunnelier.html

--

Al Jarvi (MS-MVP Windows Networking)

Please post *ALL* questions and replies to the news group for the
mutual benefit of all of us...
The MS-MVP Program - http://mvp.support.microsoft.com
This posting is provided "AS IS" with no warranties, and confers no
rights...