R
Rossco1981
HI All
This is probably a straight forward problem but I am a bit stuck.
We have an OU for terminal servers which has the GPO appplied to it, to
restrcited various things (such as run box, control panel access, map drive
etc).
This works perfectly well when users log onto the server they can only do
the tasks we want them to do, however as the policy is applied at machine
level when we log on a administrator we also experience the same
restrictions. We cannot apply the policy at user level (as users are in many
places and use different computers/laptops etc). Is there a way to apply
the policy to everyone but Administrators? As we need to use terminal
services manager, need to be able to see event viewer etc. Could we apply
the GPO to a group that admin is not a member of?
Any ideas would be welcomed.
Thanks
This is probably a straight forward problem but I am a bit stuck.
We have an OU for terminal servers which has the GPO appplied to it, to
restrcited various things (such as run box, control panel access, map drive
etc).
This works perfectly well when users log onto the server they can only do
the tasks we want them to do, however as the policy is applied at machine
level when we log on a administrator we also experience the same
restrictions. We cannot apply the policy at user level (as users are in many
places and use different computers/laptops etc). Is there a way to apply
the policy to everyone but Administrators? As we need to use terminal
services manager, need to be able to see event viewer etc. Could we apply
the GPO to a group that admin is not a member of?
Any ideas would be welcomed.
Thanks