Hi everybody. I am getting a bit frustrated since I cannot seem to finish my testproject and get over in production... I have 2 virtual 2008 R2 Enterprise installs with the RDS role installed, and another R2 (witch is an upgrade install from 2008) with the RD Connection Broker and the RD Web Access roles installed. So far I got the farm and DNS load balancing to work OK, and the config of the webside to collect apps from both RD servers also seems to work.
I can log in to the RD servers using the mstsc /admin switch, but there is no way I am getting testuser accounts to log in... I have set some policys in the OU for the RDS (all computer settings):
Policies/Windows Settings/Security Settings/Local Policys/User Rights Assignment/Allow log on through Terminal services/ "testuser group"
Policies/Windows Settings/Security Settings/Restricted Groups/ Made "testuser group" member of BUILTIN\Remote Desktop Users
These policies seems to work, when I check them out on the local servers, the users have correctly been added where they should.
I have also checked out the security rights on the RDP protocol - the RDU group was already there, but I added my testuser group and gave it the user right just to be sure.
But no way I am getting user access to these servers... I am able to log in a user account to the RDWeb, but after authenticating (again) when I click a icon for any program I get the blue logon screen saying "Access denied". The exact same as when I try to log in from my Vista computer.
What have I missed?
Regards..
I can log in to the RD servers using the mstsc /admin switch, but there is no way I am getting testuser accounts to log in... I have set some policys in the OU for the RDS (all computer settings):
Policies/Windows Settings/Security Settings/Local Policys/User Rights Assignment/Allow log on through Terminal services/ "testuser group"
Policies/Windows Settings/Security Settings/Restricted Groups/ Made "testuser group" member of BUILTIN\Remote Desktop Users
These policies seems to work, when I check them out on the local servers, the users have correctly been added where they should.
I have also checked out the security rights on the RDP protocol - the RDU group was already there, but I added my testuser group and gave it the user right just to be sure.
But no way I am getting user access to these servers... I am able to log in a user account to the RDWeb, but after authenticating (again) when I click a icon for any program I get the blue logon screen saying "Access denied". The exact same as when I try to log in from my Vista computer.
What have I missed?
Regards..