Restrict user(s) to login to a particular computer only

  • Thread starter Thread starter Oleg Ogurok
  • Start date Start date
O

Oleg Ogurok

Hi all.

I'm trying to allow only certain users to login to a server via terminal
services. Could someone please give me a hand? Thanks.

Here's what I'm doing so far (it's not working).
I created an OU and moved users and the server into it. Then I created a GPO
and assigned it to the OU.
Inside GPO, in Computer Config -> Windows Settings -> User Rights I only
allowed "Access this computer from the network" to that user. Still anyone
on the domain can login to the server via Terminal Services. I even tried to
"Deny access to this computer" to Everyone, still no luck.

Any help is appreciated,

-O.
 
On the terminal server, open Terminal Server configuration, select
Permissions/Security (cannot remember exactly what the tab is called !) and
only allow the users/group who need the rights to terminal server to the
machine there.
 
I think Nico is referring to the RDP - Remote Desktop Protocol
properties/security. Domain users can also be configured to not be able to
access Terminal Services in their account properties/Terminal Services
profile. Your method of restricting access via user rights assignments would
work if you configured "log on locally". Terminal Services logon is
considered local/interactive. --- Steve
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Back
Top