also check to ensure that the remote dekstop users group has rights to
the ICA connection.
Pavlo Ignatusha wrote:
************************************************Hi folks,
I'm sure this is something simple but can not figure it out today...
I'm building new PS4 farm. I already installed 2 Win2003 SP1 servers, Citrix and TS licensing and WI (these servers are not domain controllers). Created a group "Citrix Users" and put it in both server's "Remote Desktop Users" group. Servers are in the separate OU with no significant GPO applied (mostly "Not defined").
Problem:
Administrators can connect to each server ICA/RDP and users can not. If I try full PN client it just reports "Incorrect credentials". RDP to a server desktop displays 2 error windows and logs user off after you click "OK" in both error windows.:
Connection error
The desktop you're trying to open is curently enabled only for administrators.Contact your administrator, bla-bla-bla.
Second error window
Logon message
To log on to this remote computer you must have Terminal Server User Access permissions on this computer. By default members of Remote Desktop Users group has these permissions.If you're not a member you need these permissions granted manually.
Well, I tried putting user accounts directly into Remote Desktop Group on the TS server, tried editing RDP connection permissions to grant TS user access to a user account- nothing works. Event viewer just shows these errors as application popups event 26 under System events and Security log shows these as normal logon/logoffs.
Other info: AD 2003 SP1, existing XPFR3/SP4 farm on Win2000 working fine.
I'm sure it must be some Win2003 security or TS config issue. I'm very new to Win 2003 TS so I could have missed something simple.
Any directions are very appreciated.
Thanks,
Pavlo Ignatusha Systems Network Coordinator Pembroke Regional Hospital tel. (613) 732-3675 #6150 fax. (613) 732-9986
-- The information in this email belongs to the Pembroke Regional Hospital and may contain confidential and privileged information for the sole use of the individual or organization to which it is addressed. If you are not the intended recipient, you are hereby notified that any disclosure, copying or distribution of the contents of this email is prohibited. If you have received this email in error, please contact the sender and destroy all copies of the original message.
