Re: RDP-Tcp permissions not viewable
- From: "steve" <sbell@xxxxxxxxxxx>
- Date: 1 Sep 2006 12:14:29 -0700
I get the above msg when the suggested setting is set to "disabled" or
"not configured", when i set it to "enabled" i get the msg, "unable to
display security information".
Maxim Oustiougov [MSFT] wrote:
Another thing you should try is checking the following registry setting on
the Terminal Server or in the OU that TS computer belongs to:
Computer Configuration -> Administrative Templates -> Windows Components ->
Terminal Services -> Do not allow local administrators to customize
permissions.
I have provided description of this setting below:
Specifies whether to disable the administrator rights to customize security
permissions in the Terminal Services Configuration tool (tscc.msc).
You can use this setting to prevent administrators from making changes to
the security descriptors for user groups in the TSCC Permissions tab. By
default, administrators are able to make such changes.
If the status is set to Enabled, the TSCC Permissions tab cannot be used to
customize per-connection security descriptors or to change the default
security descriptors for an existing group. All of the security descriptors
are Read Only.
If the status is set to Disabled or Not Configured, server administrators
have full Read/Write privileges to the user security descriptors in the TSCC
Permissions tab.
Note: The preferred method of managing user access is by adding a user to
the Remote Desktop Users group.
--
Maxim Oustiougov,
Terminal Services Program Manager
This posting is provided "AS IS" with no warranties, and confers no rights.
"steve" <sbell@xxxxxxxxxxx> wrote in message
news:1156893438.122449.302130@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
when i go in to tscc to view the RDP-Tcp connection, are it's
attributes in the registry or located in a file somewhere on the
system?
Jeff Pitsch wrote:
Connection properties?
Jeff Pitsch
Microsoft MVP - Terminal Server
Provision Networks VIP
Forums not enough?
Get support from the experts at your business
http://jeffpitschconsulting.com
"steve" <sbell@xxxxxxxxxxx> wrote in message
news:1156879537.312480.218220@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
I'm sorry, that should have said, "where would the connection
properties be located?"
steve wrote:
Thanks, I will give it a try. By the way would the connection
properties be located?
Jeff Pitsch wrote:
You coud try deleting/recreating the RDP-TCP protocol. You could
also
try
uninstalling/reinstalling TS in application mode. Although this
would
require a reinstall of applications or minimally export/import of
the
shadow
key.
Jeff Pitsch
Microsoft MVP - Terminal Server
Forums not enough?
Get support from the experts at your business
http://jeffpitschconsulting.com
"steve" <sbell@xxxxxxxxxxx> wrote in message
news:1156792093.634212.97130@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
I have a windows 2003 member server upgraded from windows 2000
server.
I have remote desktop enabled but no one can remote in. Netstat -a
does
not list port 3389. When i try to view the RDP-Tcp permissions tab
i
receive the following:
The default Permissions setting are Read Only and cannot be
changed,
unless a Group Policy is set to override this.....
The type column states "Microsoft RDP 5.0" similiar to my other
windows
2000 servers, not the "Microsoft RDP 5.2" on my other windows 2003
servers.
.
- References:
- Re: RDP-Tcp permissions not viewable
- From: Maxim Oustiougov [MSFT]
- Re: RDP-Tcp permissions not viewable
- Prev by Date: Re: terminal services architecture question from a lowly first-level support peon
- Next by Date: Remote Desktop users group does not have the right to log in
- Previous by thread: Re: RDP-Tcp permissions not viewable
- Next by thread: Re: Session Directory issues
- Index(es):
Relevant Pages
|
