Re: terminal server access on a domain controller

John Bowden <JohnBowden@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote:
I have a site that has purchased one server. We have since discovered
that we need a few of the users to access the server remotely using
RDP through terminal services. Now I know that it's not a good idea
to run terminal services on a domain controller but for now, it needs
to be done until they can afford another server. The server is
running 2003 standard server and has 5 user cals installed.

I would like to set up two users that need remote access to allow
them to use thier computers in the office and when they are out of
the office, they need remote access. I have set up the GPO for
terminal services and it works fine when they are out but
unfortunatly, it locks them out of their local computer when they are
in the office. Things such as not being able to access their local
drive because I've restricted them from accessing the server local
drives are some of the problems.

I've put the GPO in the domain controller list but the user settings
are what I need to figure out how to enable ONLY when they log in
remotely. I don't know how I can do this.

Can anyone help out?
Thanks

OT, but as this is a really bad idea (esp as it sounds like this is their
sole server), what about having these users make RD connections to XP Pro
desktops on the LAN? You can set up RD to listen on alternate ports for each
(e.g., 3390,3391) if you have only one public IP. I wouldn't want to do what
you're suggesting for love or money; it's not just the security aspects,
it's also that desktop software shouldn't be installed on a server at all
unless it's a dedicated TS box.


.

Relevant Pages

  • Re: Remote Users on Virtual Machines?
    ... This offers most of the traditional desktop functionality while keeping all the processing power on the local server. ... You still need a client whether it's a thin client like Wyse offers or an old PC turned into a thin client or simply their workstation/laptop. ... The advantage of terminal services is that the applications are installed once and shared amongst all users connecting. ... I mistakenly thought TS and VM went hand in hand, so what should I be looking at to give me the functionality the remote uses have now using RWW through the SBS box WITHOUT a physical PC? ...
    (microsoft.public.windows.terminal_services)
  • Re: Remote Desktop vs Terminal Services
    ... TS has been enabled from Windows Components in add/remove. ... Users are members of the 'BackOffice Remote Users' group and I have tried ... adding this group manually to 'Allow logon to terminal services' through ... Microsoft MVP - Terminal Server ...
    (microsoft.public.windows.terminal_services)
  • Re: Terminal Services 128 day or not?
    ... remote connects + 1 console session. ... Terminal Services is used to support normal users. ... by centralizing applications, etc vs desktops. ... Microsoft MVP - Terminal Server ...
    (microsoft.public.windows.terminal_services)
  • Re: SBS2003 - Primary partition space limitation on DELL server
    ... Regarding your Remote Desktop question, you can install a Windows Server ... 2003 box as a member server with Terminal Services in Application mode. ...
    (microsoft.public.windows.server.sbs)
  • SecurityFocus Microsoft Newsletter #152
    ... MICROSOFT VULNERABILITY SUMMARY ... Real Networks Helix Universal Server Remote Buffer Overflow ... ... NEW PRODUCTS FOR MICROSOFT PLATFORMS ...
    (Focus-Microsoft)
Loading