Hello all,
I have a user account (User1) trying to RDP from a Windows 7 Pro PC to a new Windows Server 2012 Server. User1 is restricted in the AD within their AD Properties > Account Tab > 'Log on to...' button to only log onto 3 servers. When the user attempts to log onto the 2102 server, we get this error:
User1 IS able to log onto two other Windows 2008 R2 servers. All 3 servers are in the same OU. Other users (without the 'Log on to...' restriction) are able to RDP and log onto the 2012 Server. When we remove the 'Log on to...' restriction and change it to 'All Computers' for User1, it can login to the server fine.
All user accounts mentioned here are set as local administrators on all servers mentioned here.
The Answer from http://social.technet.microsoft.com/Forums/en-US/winserverTS/thread/64f18b65-7fc6-4035-8dcb-7c09bc243469/ does work here. When I add the 2012 Server and Windows 7 computer User1 is loging in from to 'Log on to...' User1 CAN log into the 2012 server.
Is there some new bit of GPO I need to add to my 2008 R2 AD Domain to allow this for our new 2012 Server? Is there something else within 2012 I need to set for this?
Thanks to all who try to help. Extra Special Thanks to the special people that provide the actual answer to help me resolve this!