How do we allow Remote access to a specific user WITHOUT having to add a that user to the Remote Desktop Users group. I do not want to give this user RDP access to every PC on our network.
We accomplished this by creating a Local user account, then adding that local user account to the Remote Desktop Users group.
Example: on UserPC, we create a UserPCUserName account - we then add the UserPCUserName account into the Remote Desktop Users group in Group Policy. Now, when we look on DomainNameServerA to see who has remote access, we do not see UserPCUserName listed, because DomainNameServerAcannot resolve the username of UserPCUserName.
As I said, this works, but it is very cumbersome, and it seems to me there should be an easier way with Group Policy.