Bubbalouie
Technical User
Hi,
I'm running Terminal Services on a Win2k3 box at a central site for a remote office to gain access to a couple of application servers.
The technical level of the users at this remote office is really low so we have each workstation sign in with a profile associated with their individual desks, i.e. Desk1, Desk2, Desk3 and so on for all fifteen users.
Passwords are kept simple intentionally so that we don't have to reset them on a daily basis. Resetting passwords for their mail accounts is a weekly chore and I do not relish the idea of having to reset their term services accounts too.
I have a new manager at this remote office who does not like the fact that someone can open a rdp client and logon using her user profile, guess her password and take over her running session. I hadn't run into this issue in the 3 years they've been running but she says it happened to her last week. Because of her position and the tasks she performs if someone logs into her term services account while she's at lunch and starts using the applications she uses to perform her job, it could be a serious HIPAA concern.
Is there a reg key or something that will prevent someone from logging on to a user profile that is already logged in? I thought maybe the 'Restrict terminal services users to a single remote session' would do the trick but that just kicks the already logged in user out.
Thanks In Advance
I'm running Terminal Services on a Win2k3 box at a central site for a remote office to gain access to a couple of application servers.
The technical level of the users at this remote office is really low so we have each workstation sign in with a profile associated with their individual desks, i.e. Desk1, Desk2, Desk3 and so on for all fifteen users.
Passwords are kept simple intentionally so that we don't have to reset them on a daily basis. Resetting passwords for their mail accounts is a weekly chore and I do not relish the idea of having to reset their term services accounts too.
I have a new manager at this remote office who does not like the fact that someone can open a rdp client and logon using her user profile, guess her password and take over her running session. I hadn't run into this issue in the 3 years they've been running but she says it happened to her last week. Because of her position and the tasks she performs if someone logs into her term services account while she's at lunch and starts using the applications she uses to perform her job, it could be a serious HIPAA concern.
Is there a reg key or something that will prevent someone from logging on to a user profile that is already logged in? I thought maybe the 'Restrict terminal services users to a single remote session' would do the trick but that just kicks the already logged in user out.
Thanks In Advance