WIN2K AD issue with Terminal Server 2003
From: Zoroaster (Zoroaster_at_discussions.microsoft.com)
Date: 08/06/04
- Next message: BillB: "Delegation"
- Previous message: TomH: "Re: Permissions"
- Messages sorted by: [ date ] [ thread ]
Date: Fri, 6 Aug 2004 09:55:02 -0700
I added a Win2003 Terminal server to our Win2K AD network.
>From within AD user profiles you can check a box that allows the user
permission to connect to a terminal server on the network.
>From within Win Server 2003 I setup terminal services. I selected settings
to allow users to logon using Standard Windows Authentication and USING
CLIENT PROVIDED LOGON settings. The issue is that the user cannot log into
the server through the domain receiving the error they are not allowed to
login ineteractively.
The only way they are allowed to logon is when I add them to the Remote
Desktop Users group by username and not by group object. This allows them to
logon through the domain and not locally.
Still I don't understand why I have to add them locally to the box when
their user profile in Active Directory is given permission to log into a
terminal server.
Seems pointless to have that terminal services setting under the user
profile from within AD if it doesn't allow you login.
- Next message: BillB: "Delegation"
- Previous message: TomH: "Re: Permissions"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
