 |
 | Home | Contact Us | FAQ | Search & Site Map | Link to Us |
 | Sign In | Join | Other 45 Sites in Network |
Windows Server Forum / Windows 2000 / Terminal Services / May 2006Configuring profiles
Hello, I am in the process of installing a new Win2K3 network, with one server for active directory, and one server for applications. One application will be run under terminal services. I am thinking that a good setup would be to create a terminal services OU for the 7 users. Then I can apply policies to the OU. The clients would log onto the domain, and then invoke a term. services session; thereby preventing any conflict with their domain profile and a term. services profile. Does anyone have any feedback for me on this scenario? Thanks, Jude Yes, you need a separate OU. Be sure to put the TS server object in the OU, *not* the user accounts. And use loopback processing of the GPO. More details here: http://ts.veranoest.net/ Choose "Group Policies" in the menu _________________________________________________________ Vera Noest MCSE, CCEA, Microsoft MVP - Terminal Server TS troubleshooting: http://ts.veranoest.net ___ please respond in newsgroup, NOT by private email ___ "jude@womenshealthspecialists.org" <jude@womenshealthspecialists.org> wrote on 30 maj 2006 in microsoft.public.win2000.termserv.clients: > Hello, I am in the process of installing a new Win2K3 network, > with one server for active directory, and one server for [quoted text clipped - 5 lines] > with their domain profile and a term. services profile. Does > anyone have any feedback for me on this scenario? Thanks, Jude -Hello, I am in the process of installing a new Win2K3 network, with one -server for active directory, and one server for applications. One -application will be run under terminal services. I am thinking that a -good setup would be to create a terminal services OU for the 7 users. -Then I can apply policies to the OU. The clients would log onto the -domain, and then invoke a term. services session; thereby preventing -any conflict with their domain profile and a term. services profile. -Does anyone have any feedback for me on this scenario? Thanks, Jude We do something similar. Points to note: Use different user names for the users "windows" id, and their terminal services one, so the windows ones don't get effected by the policies on the OU If you put a policy on the OU, and then put the users in it, only the User configuration is acted upon, the Computer Config is ignored. This may help http://www.microsoft.com/windowsserver2003/techinfo/overview/lockdown.mspx regards -Rob -Rob robatwork at mail dot com You can avoid creating multiple user accounts, when you use loopback processing of the GPO, and link the GPO to the OU which contains the Terminal Server machine accounts, *not* the user accounts. Loopback processing is especially created for this situation. 260370 - How to Apply Group Policy Objects to Terminal Services Servers http://support.microsoft.com/?kbid=260370 231287 - Loopback Processing of Group Policy http://support.microsoft.com/?kbid=231287 _________________________________________________________ Vera Noest MCSE, CCEA, Microsoft MVP - Terminal Server TS troubleshooting: http://ts.veranoest.net ___ please respond in newsgroup, NOT by private email ___ Rob S <robatworkDeleteTheseFourWords@mail.com> wrote on 31 maj 2006 in microsoft.public.win2000.termserv.clients: > On 30 May 2006 13:38:50 -0700, > "jude@womenshealthspecialists.org" [quoted text clipped - 29 lines] > -Rob > robatwork at mail dot com |
Reply to this Message |
 Sign In
 Join
 My Latest Posts My Monitored Threads My Blog My Photo Gallery My Profile My Homepage Start New Thread Enable EMail Alerts Rate this Thread
|
©2009 Advenet LLC Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.