How to allow RDP based on GPO while ALSO allowing local admins to RDP into member servers?


  • In my lab's DC, I've set up a "Lab RDP Group" and put a couple admins in there.  Then I did the steps in the following blog to restrict Remote Logins based on group policy:

    But then local admins can no longer establish RDP sessions to servers.  We have reasons to still want local admins to log on to servers remotely.  But we also want to start using the domain group policy.

    How can we have both?

    Tuesday, August 18, 2015 10:30 PM


All replies