Windows 2008 terminal server.
I configured and distributed a RemoteApp RDP file to our workstations, but on the first day, one Windows XP user, not realizing that the logon format needed to be domain\username, instead of calling me for clarification, just went manually to Remote Desktop Connection, entered the server name, and gracefully bypassed all my hard work in configuring RemoteApp, ending up with a full deskto on the server.
I know I can also set tthe Environment tab in ActiveDirectory users and computers to limit users to one application should they again bypass the RemoteApp. However, it seems to me that there should be some setting that limits users to using RemoteApp RDP connections on a particular server and not a generic RDP logon, but I can find nothing. Is there any such setting.
This is particularly important because we may use multiple RemoteApp connections and the occasional user may need regular RDP access (with desktop) to one of our other servers.
