remote-desktop – 如何禁用Administrator的RDP访问权限

前端之家收集整理的这篇文章主要介绍了remote-desktop – 如何禁用Administrator的RDP访问权限前端之家小编觉得挺不错的,现在分享给大家,也给大家做个参考。
我们需要禁止管理员帐户直接通过RDP访问服务器.我们的策略是以普通用户身份登录,然后使用“运行方式管理”功能.我们怎样设置它?

有问题的服务器正在运行带有远程桌面会话主机和基于会话的RD集合的Windows Server 2012 R2.允许的用户组不包含域管理员用户,但他仍能以某种方式登录.

谢谢.

这似乎是你在寻找:
http://support.microsoft.com/kb/2258492

To deny a user or a group logon via RDP,explicitly set the “Deny
logon through Remote Desktop Services” privilege. To do this access a
group policy editor (either local to the server or from a OU) and set
this privilege:

  1. Start | Run | Gpedit.msc if editing the local policy or chose the appropriate policy and edit it.

  2. Computer Configuration | Windows Settings | Security Settings | Local Policies | User Rights Assignment.

  3. Find and double click “Deny logon through Remote Desktop Services”

  4. Add the user and / or the group that you would like to dny access.

  5. Click ok.

  6. Either run gpupdate /force /target:computer or wait for the next policy refresh for this setting to take effect.

原文链接:https://www.f2er.com/windows/370683.html

猜你在找的Windows相关文章