simoncarter2003
Programmer
Hi All,
I've got a particular scenario and I'm after possible solutions or suggestions.
A standalone windows 2008 machine which has a series of 'Restricted' accounts which are used to run different services/applications and they require *some* user interaction. Access to this box is primarily via RDP. I have a group of 7/8 users which I don't want to have full admin rights over the box but need to be able to get onto these 'Restricted' Accounts.
Ideally I wouldn't give these users the RDP passwords for each of these accounts as the passwords would then need to be changed each time a user leaves/changes role. My ideal solution is some kind of approach where the users have their own RDP accounts (and hence can be audited), and can then remote into the 'Restricted' accounts.
My problem is that RDP 'Remote Control' doesn't work on disconnected sessions; so my next idea was to allow them to have the RDP passwords but the 'Restricted' accounts can only connect from the local machine, forcing them to login as themselves, and then Jumping over to the 'Restricted' account - but I'm not able to find a method of doing this.
Any alternative solutions or methods of applying my above approach are welcome.
Many Thanks,
Simon
I've got a particular scenario and I'm after possible solutions or suggestions.
A standalone windows 2008 machine which has a series of 'Restricted' accounts which are used to run different services/applications and they require *some* user interaction. Access to this box is primarily via RDP. I have a group of 7/8 users which I don't want to have full admin rights over the box but need to be able to get onto these 'Restricted' Accounts.
Ideally I wouldn't give these users the RDP passwords for each of these accounts as the passwords would then need to be changed each time a user leaves/changes role. My ideal solution is some kind of approach where the users have their own RDP accounts (and hence can be audited), and can then remote into the 'Restricted' accounts.
My problem is that RDP 'Remote Control' doesn't work on disconnected sessions; so my next idea was to allow them to have the RDP passwords but the 'Restricted' accounts can only connect from the local machine, forcing them to login as themselves, and then Jumping over to the 'Restricted' account - but I'm not able to find a method of doing this.
Any alternative solutions or methods of applying my above approach are welcome.
Many Thanks,
Simon