RATE THIS ANSWER
0
Click to Vote:
- 0
0
Last Answered:
May 2 2008 9:12 AM GMT
by Vlvpk
Hi,
My suggetion is go with Group Polocy which u need to create and link to the Domain Controler OU. Ensure that u given read and apply permission to that particular Domain Account .So that the GPO will apply only to the particular Domain Account . To configure this GPO please go through below link
http://technet2.microsoft.com/windowsserver/en/library/8623052e-c21f-4fd9-a9a1-056779c2758f1033.mspx?mfr=true
To remove access to ADTool. U can give Deny Read access to particular Domain Account in the Security Tab of ADTool. By selecting advanced in the view menu, u will get the security for ADTOOL.
I hope this will work for u...
Thanks
vlvpk
Remote access, Windows Server 2003, User permissions, Remote access security
I'm trying to set up remote access to our network for a user. The domain account is created (as a member of Domain User and Remote Desktop Users, not an administrator) as is the roaming profile he is to use on the Windows 2003 server he'll be accessing. I pointed his AD profile to the roaming profile I created but when I tested logging in I found that the usual server desktop is being displayed along with the desktop associated with the roaming profile. I'm also able to see and access the server's Administrative Tools which I obviously don't want him to access. What do I need to change so that all he will see and be able to access is what I defined in the roaming profile? 
