There is no "Deny Log on through Terminal services" policy

April 29, 2008

I have a Windows 2000 server with Service Pack 4 that does not have the "Deny

Log on through Terminal services" policy within gpedit. I need to add a user

to this policy to deny RDP access. I have tried to use Active Directory to

enable this policy, but it isn't working. I am assuming it is because the

server doesnt have the option itself. Any ideas?

April 30, 2008

Re: There is no "Deny Log on through Terminal services" policy

In W2K, users need the right to "Log On Locally" in the server's

security settings. Do you have that settings? If so, you can deny

this right.

You can also modify the rdp-tcp permissions to deny access.

_________________________________________________________

Vera Noest

MCSE, CCEA, Microsoft MVP - Terminal Server

___ please respond in newsgroup, NOT by private email ___

=?Utf-8?B?U3RldmU=?= <Steve@discussions.microsoft.com> wrote on 29

apr 2008 in microsoft.public.windows.terminal_services:

> I have a Windows 2000 server with Service Pack 4 that does not

> have the "Deny Log on through Terminal services" policy within

> gpedit. I need to add a user to this policy to deny RDP access.

> I have tried to use Active Directory to enable this policy, but

> it isn't working. I am assuming it is because the server doesnt

> have the option itself. Any ideas?

Recommended Posts