RE: Terminal Services - Domain Controller - Normal User
From: Bates, Chris (Chris.Bates_at_nwdc.net)
Date: 02/25/05
- Previous message: Tim Evans: "Re: Domain Controller Best Practice - Thanks!"
- Maybe in reply to: Laura A. Robinson: "RE: Terminal Services - Domain Controller - Normal User"
- Next in thread: neal: "RE: Terminal Services - Domain Controller - Normal User"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 25 Feb 2005 13:11:37 -0800 To: "Michael Scheidell" <scheidell@secnap.net>, "Robert Abela" <robert@gfi.com>, focus-ms@securityfocus.com
Yes, just add them to a domain local group, then grant that local group
the rights to log into the DC via RDP via DC Group Policy, and set the
permissions on the RDP Adapter in TS Admin console to grant login to the
domain local group above.
--------------------------------------------------------
Chris Bates
ACS; Enterprise Services
-----Original Message-----
From: Michael Scheidell [mailto:scheidell@secnap.net]
Sent: Friday, February 25, 2005 12:28 PM
To: Robert Abela; focus-ms@securityfocus.com
Subject: RE: Terminal Services - Domain Controller - Normal User
Yes, promote them to domain administrators.
> -----Original Message-----
> From: Robert Abela [mailto:robert@gfi.com]
> Sent: Friday, February 25, 2005 3:07 AM
> To: focus-ms@securityfocus.com
> Subject: Terminal Services - Domain Controller - Normal User
>
> HI,
>
> To log on via terminal Services (administration mode) on a Domain
> controller one needs to be an Administrator of the domain (like a
> member of the enterprise administrators, or domain administrators
> etc), since a domain controller doesn't have its own groups.
>
> Are there any particular permissions or way to set it up to give a
> normal user logon access (via terminal services, administration mode)
> to the domain controller?
>
> Kind regards,
>
> Robert Abela - GFI Software Ltd. - www.gfi.com Messaging, Content
> Security & Network Security Software
> GFI: MailSecurity - FAXmaker - MailEssentials - LANguard
>
>
>
>
> This mail was checked for viruses by GFI MailSecurity.
> GFI also develops anti-spam software (GFI MailEssentials), a fax
> server (GFI FAXmaker), and network security and management software
> (GFI LANguard) - www.gfi.com
>
>
> --------------------------------------------------------------
> -------------
> --------------------------------------------------------------
> -------------
>
>
>
------------------------------------------------------------------------
--- ------------------------------------------------------------------------ --- --------------------------------------------------------------------------- ---------------------------------------------------------------------------
- Previous message: Tim Evans: "Re: Domain Controller Best Practice - Thanks!"
- Maybe in reply to: Laura A. Robinson: "RE: Terminal Services - Domain Controller - Normal User"
- Next in thread: neal: "RE: Terminal Services - Domain Controller - Normal User"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
