Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Granting Terminal Server User Access for domain users

Status
Not open for further replies.
deankn

deankn

IS-IT--Management
Feb 22, 2003
30
0
0
US
Am trying to set up a 2003 terminal server in network with a win2k domain controller. I can access the ts only with users that are in the domain admins group on the dc. Non-admin users login brings error "to log on to this remote computer you must be granted the allow log on through terminal services...". Am unable to add domain users/groups to the remote desktop users group on the ts - only the name of the local computer appears in the "from this location" box.
FWIW I can remote desktop into the dc using a non-admin user.
I am assuming I am missing something obvious - any suggestions?
Thanks
Dean
 
Sort by date Sort by votes
Dean,
Even if you click on the "location" box, you don't have the choice of selecting the entire domain?

Kmills
 
Upvote 0 Downvote
When I go into computer management/local users and groups/remote desktop users/add the local computer name is in "from this location" - if i click the locations button the only location is the local computer - the ts is on the domain, and I can see the other domain computers.
Dean
 
Upvote 0 Downvote
Are you logging on as a local administrator or a domain administrator?
 
Upvote 0 Downvote
I am logging on as the domain administrator. Perhaps that's my problem?
 
Upvote 0 Downvote
No, you should be able to see your entire domain if you are logged in as a domain admin. This server is a member of the domain, right?
 
Upvote 0 Downvote
Do you have a GPO restricting Terminal Services? Have you allowed the users the right to remote access in AD?

This may have been checked, but it's good to cover all bases :)
 
Upvote 0 Downvote
Sorry for double..

Have you added them to the domain remote users group?
As regards the server, it does not appear to be on the domain correctly. Can you get it to replicate with the DC?

If you run set from the command line, you should be able to see if the TS has authenticated correctly.

Again, sorry if this has been automatically covered.
 
Upvote 0 Downvote
The ts seems to be joining the domain just fine - the users were granted rights to log on locally on the dc - users can remote desktop directly to dc without any problems(in remote admin mode)
 
Upvote 0 Downvote
Under services, is Remote Access Connection Manager started? How about Terminal Service?
 
Upvote 0 Downvote
Yes to both. As I said I can access ts with domain admins but not domain users. I think the main issue is that I cannot add domain users to the ts remote desktop users group.
 
Upvote 0 Downvote
check ur ddp gpo
add the users/group to the remote desktop users group in ad
is ur ts licens server up and running?
 
Upvote 0 Downvote
I got this to work - I believe what made it work was adding "remote desktop users" to "allow logon through terminal services" in the local policies on the terminal server.
Thanks for your help.
Dean
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Aquiles Vidal
  • Locked
  • Question
Web Browsers in Windows Server or Terminal Server
Replies
0
Views
228
Aquiles Vidal
Aquiles Vidal
MaioMaio
  • Question
Server Remote Desktop License
Replies
0
Views
183
MaioMaio
MaioMaio
DrB0b
  • Locked
  • Question
Windows 2016 IIS FTP server with a ton of user accounts
Replies
4
Views
234
DrB0b
DrB0b
Abdullah Al Maruf
  • Locked
  • Question
Telnet help for
Replies
2
Views
189
gbaughma
gbaughma
goombawaho
  • Locked
  • Question
Domain join from wifi connected laptop
Replies
4
Views
300
goombawaho
goombawaho

Part and Inventory Search

Sponsor

Back
Top