Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Configuring Remote Desktop for all machines in domain 1

Status
Not open for further replies.
coffeenbeer

coffeenbeer

IS-IT--Management
Nov 15, 2007
8
US
I'm trying to find what I need to change to enable all computers in the domain to have RDP turned on, with the option to view/the end machine as well as have full control.

Currently I know how to get it to work by changing a policy using gpedit.msc on each individual machine. But when I log on it signs the person out. So if theirs a app they need help with they can't see what I'm doing.

The local Computer policy under Computer Configuration:Administrative Templates:Terminal Services Key "Set rules for remote control of Terminal Services user sessions" gives me the options of:
Full control with users permission/without their permission
View session with users permission/without their permission

I imagine their is a policy that I can change to get this all pushed out from the Domain controller. I'm just not changing the right one.

Thanks for any help that any of you can give,
 
Sort by date Sort by votes
I should have mentioned that the server is 2000 and the workstations are all XP PRO. Thanks for the link, its interesting, I still think there is way of doing the policy wise.
 
Upvote 0 Downvote
Assign a computer side Startup Script to apply a reg hack
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server]

"fDenyTSConnections"=dword:00000000

Change the value of this setting to 0 to enable Remote Desktop or 1 to disable it, and click OK.
 
Upvote 0 Downvote
i just have it as a logon script. Does not work on Vista, but who cares

Code: 
On Error Resume Next
Dim locGroup
Dim domGroup
Dim WshNetwork

strComputer = "."
'Check if this is a Server or Windows 2000. If this is a server or W2K then quit
Set objWMIService = GetObject("winmgmts:\\" & strComputer & "\root\cimv2")
Set colItems = objWMIService.ExecQuery("Select * from Win32_OperatingSystem",,48)
For Each objItem in colItems
    If InStr(1,objItem.Caption,"Server") Then Wscript.Quit
	If InStr(1,objItem.Caption,"2000") Then Wscript.Quit
Next

'Enable Remote Desktop
boolEnable = 1 ' 1=enable; 0=disable

Set objWMI = GetObject("winmgmts:\\" & strComputer & "\root\cimv2")
Set colItems = objWMI.ExecQuery("Select * from Win32_TerminalServiceSetting")
For Each objItem In colItems
    intRC = objItem.SetAllowTSConnections(boolEnable)
Next
wscript.sleep 3000

'Add Domain Admins To Remote Desktop Users Local Group
Set wshNetwork=CreateObject("wscript.network")
Set locGroup=GetObject("WinNT://" & wshNetwork.ComputerName & "/Remote Desktop Users")

Set domGroup=GetObject("WinNT://Your.Domain.com/Domain Admins")
	If Not locGroup.IsMember(domGroup.AdsPath) Then
		locGroup.add domGroup.AdsPath
End If
 
Upvote 0 Downvote
Thanks GrimR. This really helps me in learning VB Scripting; I can't seem to let go of batch files. Very helpful. :) * for u
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

MaioMaio
  • Locked
  • Question
Server Remote Desktop License
Replies
0
Views
239
MaioMaio
MaioMaio
Abdullah Al Maruf
  • Locked
  • Question
Telnet help for
Replies
2
Views
268
gbaughma
gbaughma
goombawaho
  • Locked
  • Question
Domain join from wifi connected laptop
Replies
4
Views
417
goombawaho
goombawaho
ravalos
  • Locked
  • Question
Problem with PDFs in IIS
Replies
1
Views
530
gbaughma
gbaughma
Aquiles Vidal
  • Locked
  • Question
Web Browsers in Windows Server or Terminal Server
Replies
0
Views
295
Aquiles Vidal
Aquiles Vidal

Part and Inventory Search

Sponsor

Back
Top