Re: Terminal Service - default log-on to domain vs local client

Dear Jon,

Thank you for your update.

Based on my further research, to configure the default logon to domain for
all clients, you can perform the following steps:

1. On the terminal server, click Start->Programs->Admin
Tools->Terminal Services->Terminal Services Configuration -> Under
"Connections", select RDP-Tcp-> Right Click -> Properties > Select "Log On
Settings" Tab
2. Select the Radio Button "Always use the following logon
information", and type the domain name in the "Domain" text box. Click OK.

Since you need to conned the client computer, we unable to perform the
steps above, however we can set the corresponding registry value is the
following on clients:

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal
Server\WinStations\RDP-Tcp]
"Domain" (Domain name)
fInheritAutoLogon 0 (Always use the following logon
information)

However, we do not have a group policy to deploy this setting. Considering
the current situation, you may consider deploying a startup script to
deploy this setting to all domain clients:

1. Configure logon setting on SBS server as required.
2. Export the [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal
Server\WinStations\RDP-Tcp] registry key to registry file and modify this
file to remove unrelated items. The end result is similar to the following:

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal
Server\WinStations\RDP-Tcp]

"fInheritAutoLogon"=dword:00000000
"Domain"="***MyDomain"

3. put this registry file in a share folder.
4. Create a new Windows Batch File with the following command:

regedit /s <Path of the registry file>

For example, if the path to the registry file is \\server\share\TS.reg, you
can include the command below in the batch file:

regedit /s \\server\share\TS.reg

5. Create a GPO to deploy a startup script to run the newly created batch
file to all domain clients.

I hope these steps will give you some help.

Thanks and have a nice day!

Best regards,

Terence Liu (MSFT)

Microsoft CSS Online Newsgroup Support

Get Secure! - www.microsoft.com/security

=====================================================
This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the corresponding
newsgroups so that they can be resolved in an efficient and timely manner.
You can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx

When opening a new thread via the web interface, we recommend you check the
"Notify me of replies" box to receive e-mail notifications when there are
any updates in your thread. When responding to posts via your newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.

Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In doing
so, it will ensure your issues are resolved in a timely manner.

For urgent issues, you may want to contact Microsoft CSS directly. Please
check http://support.microsoft.com for regional support phone numbers.

Any input or comments in this thread are highly appreciated.
=====================================================

This posting is provided "AS IS" with no warranties, and confers no rights.

--------------------
From: jonjof <boebzer2@xxxxxxxxx>
Newsgroups: microsoft.public.windows.server.sbs
Subject: Re: Terminal Service - default log-on to domain vs local client
Date: Tue, 22 Jul 2008 13:21:24 -0700 (PDT)
Organization: http://groups.google.com
Lines: 160
Message-ID:
<c9d9bbbf-41a8-412a-81a7-536c388e5b22@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
References:
<a9170624-61dd-4ef4-bccd-6f804cfc046a@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
<VM5jx#96IHA.4056@xxxxxxxxxxxxxxxxxxxxxx>
NNTP-Posting-Host: 41.205.144.87
Mime-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
X-Trace: posting.google.com 1216758086 25210 127.0.0.1 (22 Jul 2008
20:21:26 GMT)
X-Complaints-To: groups-abuse@xxxxxxxxxx
NNTP-Posting-Date: Tue, 22 Jul 2008 20:21:26 +0000 (UTC)
Complaints-To: groups-abuse@xxxxxxxxxx
Injection-Info: k13g2000hse.googlegroups.com; posting-host=41.205.144.87;
posting-account=mx57SwoAAABuuyOS86O2ycWLUxmTEB0I
User-Agent: G2/1.0
X-HTTP-UserAgent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.2; .NET
CLR
1.1.4322),gzip(gfe),gzip(gfe)
Path:
TK2MSFTNGHUB02.phx.gbl!TK2MSFTNGP01.phx.gbl!TK2MSFTFEEDS01.phx.gbl!newsfeed.
cw.net!cw.net!news-FFM2.ecrc.de!news.glorb.com!postnews.google.com!k13g2000h
se.googlegroups.com!not-for-mail
Xref: TK2MSFTNGHUB02.phx.gbl microsoft.public.windows.server.sbs:116280
X-Tomcat-NG: microsoft.public.windows.server.sbs

On Jul 22, 11:45 am, v-ter...@xxxxxxxxxxxxxxxxxxxx (Terence Liu
[MSFT]) wrote:
Hello Jon,

Thank you for posting here.

According to your description, I understand that when you want to make
theRDClogon clients as domain in the "Logon to" box. If I have misunderstood
the problem, please don't hesitate to let me know.

Based on my research, the "Logon to" box will disappear the latest logon
status. If user logon and logoff with local account last time, the box
will
disappear the "this computer" when you try to logon next time.

If you want to logon domain each time when you connect the computer
thruRDC, please perform the following steps:

1. Run "mstsc" to open Remote Desktop Connection.

2. Click options, input the client IP or name in the Computer box

3. Input the SBS domain name in the Domain box (without ".local").

4. Click Save As, and save the rdp file on your disk

Then, you can double click the rdp file when you want to connect the
client
desktop, and the "Logon to" box will disappear your domain name.

I hope these steps will give you some help.

Thanks and have a nice day!

Best regards,

Terence Liu (MSFT)

Microsoft CSS Online Newsgroup Support

Get Secure! -www.microsoft.com/security

=====================================================
This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the
corresponding
newsgroups so that they can be resolved in an efficient and timely
manner.
You can locate the newsgroup
here:http://www.microsoft.com/communities/newsgroups/en-us/default.aspx

When opening a new thread via the web interface, we recommend you check
the
"Notify me of replies" box to receive e-mail notifications when there are
any updates in your thread. When responding to posts via your newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.

Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In
doing
so, it will ensure your issues are resolved in a timely manner.

For urgent issues, you may want to contact Microsoft CSS directly. Please
checkhttp://support.microsoft.comfor regional support phone numbers.

Any input or comments in this thread are highly appreciated.
=====================================================

This posting is provided "AS IS" with no warranties, and confers no
rights.

-------------------->From: jonjof <boebz...@xxxxxxxxx>
Newsgroups: microsoft.public.windows.server.sbs
Subject: Terminal Service -defaultlog-on to domain vs local client
Date: Mon, 21 Jul 2008 15:18:39 -0700 (PDT)
Organization:http://groups.google.com
Lines: 14
Message-ID:

<a9170624-61dd-4ef4-bccd-6f804cfc0...@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>



NNTP-Posting-Host: 41.205.144.87
Mime-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-Trace: posting.google.com 1216678719 5719 127.0.0.1 (21 Jul 2008
22:18:39 GMT)
X-Complaints-To: groups-ab...@xxxxxxxxxx
NNTP-Posting-Date: Mon, 21 Jul 2008 22:18:39 +0000 (UTC)
Complaints-To: groups-ab...@xxxxxxxxxx
Injection-Info: f36g2000hsa.googlegroups.com;
posting-host=41.205.144.87;
   posting-account=mx57SwoAAABuuyOS86O2ycWLUxmTEB0I
User-Agent: G2/1.0
X-HTTP-UserAgent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.2;
NET
CLR
   1.1.4322),gzip(gfe),gzip(gfe)
Bytes: 1409
Path:


TK2MSFTNGHUB02.phx.gbl!TK2MSFTNGP01.phx.gbl!TK2MSFTFEEDS02.phx.gbl!TK2MSFTF­
E

EDS01.phx.gbl!newsfeed00.sul.t-online.de!t-online.de!border2.nntp.dca.gigan­
e

ws.com!nntp.giganews.com!postnews.google.com!f36g2000hsa.googlegroups.com!n­
o
t-for-mail



Xref: TK2MSFTNGHUB02.phx.gbl microsoft.public.windows.server.sbs:116156
X-Tomcat-NG: microsoft.public.windows.server.sbs

When logging onto a client viaRDC[TS] I mostly get the
"Logon to:"  option defaults to the local computer.
I would like this todefaultto the domain rather.

Kindly advise if I can set a group policy to make thedefaultchoice
teh Domain.

With thanks

Jon- Hide quoted text -

- Show quoted text -- Hide quoted text -

- Show quoted text -
Dear Terence
Thank you
Saving the .rdp file is a useful option.
I have also realised that using the RDC form the clients does
automatically select the domain "logon to".
Where I still come across is a default to local machine rather than
domain is under
SBS Server Management, Client Computers, Connect to Computer via
Terminal Services.
The default user name does come up as domainname\usename
But the default "logon to" is the computer name.
Is there a way to change this either in the registry or via group
policy, or any other default??
Thanks
JJ


.