General discussion


Terminal Services Security

By jbox ·
My client is using Terminal Services for an external vendor to VPN in and update their software.
I have set them up with guest access, and using Windows Explorer set the permissions for directories to deny access (except for the directories they need to access). When I tested the logon within the network, their access was suitably restriced, but when I VPN'd in and used Terminal services the logon was locked out of some directories, but not others (that had permissions to deny access). How do I lock the logon down so it can only access a couple of directories when using VPN and Terminal Services?

Thanks for your assistance.
Kind Regards,
Justin Boxer

This conversation is currently closed to new comments.

Thread display: Collapse - | Expand +

All Comments

Collapse -

by jbox In reply to Terminal Services Securit ...

Point value changed by question poster.

Collapse -

by Curacao_Dejavu In reply to Terminal Services Securit ...

in short

the sharing permissions and the ntfs security permissions are different.
It's working via the network, because via the network you are accessing the server via the shared folder and the permissions you have assigned via the shared tab applies.

when you login via the terminal services you login on the server directly, and thus the permissions applied on the security tab are applied.

try to macth them. if the permissions are different the access is applied by the most restrictive of the two permissions.


Collapse -

by jbox In reply to

Visited my customer today and used the security permissions.
Was great - achieved our security requirements.
Thanks you so much, Leopold.
Kind regards, Justin

Collapse -

by jbox In reply to Terminal Services Securit ...

This question was closed by the author

Related Discussions

Related Forums