Allow Logon through Terminal Services - Domain Controller

hi,

i have grant rdp access , local logon rights team os & hardware maintenance purpose.

as part of task, tried grant remote login access normal user domain controller, couldn't not.

i have added user id in "allow log on through terminal services" , "allow logon locally" under following location, , verified applied.

• computer configuration -> windows settings ->
  security settings -> local policies -> user rights assignment

since not working, selected 1 domain controller, , denied other policies it. i.e, 1 policy applied selected domain controller (we have 4 dc's), make sure no other policy causing problem.domain controller

could 1 grant access normal user login domain controller?

here event security log

event id: 4825

failureaudit:

"a user denied access remote desktop. default, users allowed connect if members of remote desktop users group or administrators group.

.................. .

this event generated when authenticated user not allowed log on remotely attempts connect computer through remote desktop

hi subhashm,

to add user remote desktop group:

1. right-click pc , click properties
2. click remote settings
3. check allow remote connections computer and click select users
4. click add , add user want add

in addition, here article below may helpful you.

“allow logon through terminal services” group policy , “remote desktop users” group.

https://blogs.technet.microsoft.com/askperf/2011/09/09/allow-logon-through-terminal-services-group-policy-and-remote-desktop-users-group/

best regards,

jay

---

please remember mark replies answers if , un-mark them if provide no help. if have feedback technet subscriber support, contact tnmff@microsoft.com.

Windows Server  >  Group Policy