> You realize that you don't NEED to add a user to the local > Administrators group to get access over RDP, yeah? It's just that by > default only the local Administrators group is allowed to access the > server over RDP. You can grant that to a regular user and then su > (runas) into an administrator account. That would still meet least > privilege reqs, yeah? You can also just add the use to the Remote Desktop Users group. That allows them to log in via RDP but otherwise there existing group membership determines what they have access to. John T