Thursday, May 14, 2009

Provide an active directory domain user with Remote Desktop access

I assume you are the Administrator or have the rights to modify Active Directory. These are the steps.
  1. Start > Control Panel > Administrative Tools > Active Directory Users and Computers
  2. Right Click the Domain User > select Properties
  3. Click on the 'Member Of' tab
  4. Add 'Remote Desktop User' to the Member Of list
  5. Apply and Ok
Now you can sneak in remotely.
Curated by No comments:
Labels:

Provide access to Domain User to login remotely / Unable to login to a server

Did you ever stumble upon this error?

To log on to this remote computer, you must be granted the allow log on through terminal services right.  By default, members of the remote desktop users group have this right.  If you are not a member of the remote desktop users group or another group that  has this right, or if the remote desktop user gropu does not have this right, you must be granted this right manually.

Of course you just did, that's why you are here. You must have done the needful as mentioned in the error above (like adding the user to the Remote Desktop User group) and still unable to login?

It's clear by now that the Remote Desktop User group doesn't have the log on grant through terminal services. Here's how you grant the RDU group.
  • Start > Run > secpol.msc
  •  Expand Local Policies, and then click User Rights Assignment
  • In the right pane, double-click Allow logon through Terminal Services. Make sure that the Remote Desktop Users group is listed
  • In the right pane, double-click Deny logon through Terminal Services. Make sure that the Remote Desktop Users group is not listed
  • Close the Local Security Settings snap-in
You should be all clear.
Smilez..|/
Curated by No comments:
Labels:
Subscribe to: Posts (Atom)