So you've built your shiny new Windows Server 2008 R2 Terminal Server, virtualised it and it's all going well, except for one thing.
Every time you RDP to it, you get presented with the local login, not the domain login!
So all the users have to type Domain\Username , or username@domain. Which is fine, if they are a little comptuer savvy, however forcing the Terminal Server to logon to the domain first time is much nicer!
So here are the steps to force the RDP session to open with your domain instead of the local machine as the authentication target!
First login to the TS (Terminal Server) with a user with administrative privileges.
Then open Remote Desktop Session Host Configuration:
Once you're in, navigate to the 'RDP-Tcp' connection, located under connections.
Now right click on RDP-TCP and select properties.
Once the Properties window comes up, navigate to the "Log on Settings" tab.
This is the page where you can specify your domain, which will force the TS to have "log on to: domain" when the user connects via RDP.
Remember to click 'Always prompt for password' and leave the Username field blank, as this will ensure the user still has to login, while providing the domain for them so they do not have to remember to type it in.
Once that is complete, simply click ok, close all your windows and attempt and RDP session and you should see your domain on the login screen!
4 comments:
One thing I've noticed however... the system I'm working on then requires a double login. We're using thin clients, and don't want the user to enter credentials on the thin client, and then again on the server, we just want the server. Doing some research, this can be accomplished by adding/changing the RDP file (in notepad) with the following settings:
authentication level:i:0
enablecredsspsupport:i:0
prompt for credentials:i:0
I have been searching for days looking for a solution to the problem you describe here. I did enter the DOMAIN into the Host Server Configuration as you described. I had such high hopes, but my students still get the Log on to: I am so frustrated. Any other ideas?
Are you using NTLM authentication? If so there are client site settings to enable NTLM via RDP connection.
Also SSO via RDS requires RDP client 7.1 and greater.
http://serverfault.com/questions/443779/windows-2008-r2-rds-double-login
Post a Comment