Re: terminal server config

---

• From: "Simon Geary" <simon_geary@xxxxxxxxxxx>
• Date: Sat, 30 Apr 2005 01:42:13 +0100

---

If you know what users work in what site then you could create new security
groups containing the relevant users and use filtering to apply Group
Policies to these new security groups. That would allow you to have
different logon scripts depending on what group (and therefore what site)
the user was in without actually applying the policy at site level.
ifmember.exe might also be useful in such a situation. I also suggest you do
not use DCs for TS if you can at all help it.

"chriske911" <chriske911@xxxxxxxxxx> wrote in message
news:mn.ed197d548b5aa389.32006@xxxxxxxxxxxxx
> to the experienced people here:
>
> what is the best way to apply a GPO for terminal servers so users get a
> config wich is site specific
>
> meaning that I want the users to be mapped to the site local server shares
> instead of their own site shares
>
> the setup in mind is to place the TS servers in the site OU instead of all
> TS grouped together in a separate OU
> the last is what is recommended by MS KB article
>
> the prob is that the remote site DC's are also used for TS
>
> so I have to move the DC's from the default domain controllers OU to the
> site OU's
>
> is there another way to organize such a setup?
>
> thnx
>
> --
> This is an automatic signature of MesNews.
> Site : http://www.mesnews.net
>


.

---

• References:
  • terminal server config
    • From: chriske911

• Prev by Date: Re: Offline files - synch error message
• Previous by thread: Re: terminal server config
• Next by thread: Password Policy for domain
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: [Full-disclosure] Brute force attack - need your advice ... to setup properly" and as I stated nothing is foolproof or totally ... is more of a point that security is ever evolving. ... But as I said, this is pure populism, servers are here to serve, not ... there are e.g. scripts which evaluate failed logins from ... (Full-Disclosure) merging domains ... security currently they all have trusts setup between domains as well ... as secondary DNS setup on each. ... The servers are setup at different ... (microsoft.public.windows.server.active_directory) Re: terminal server config ... If your servers have associated with the correct sites, then GPOs that you ... > meaning that I want the users to be mapped to the site local server shares ... > the setup in mind is to place the TS servers in the site OU instead of all ... (microsoft.public.win2000.group_policy) Re: ISA and Exchange 2007 ... "ISA is just another level of security" - I don't think I've ever heard it ... HTTP-level validation (blocks HTTP-based attacks so your Exch servers ... Jim Harrison (ISA SE) ... The reason I say this is that if you setup OWA correctly and use ... (microsoft.public.isa) RE: A question about a basic security setup... ... A question about a basic security setup... ... > I was thinking of running iptables on the dual homed host, ... What you are looking for here, is an "application proxy" type firewall. ... (Security-Basics)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Win2000  > microsoft.public.win2000.group_policy  > 2005-04