Windows Server 2000/2003 Thread, Remote Admin without stealing console? in Technical; Admin is logged on in front of 2008 server, but if you RDP to it and log on as Admin ...
17th December 2008, 09:08 PM #1
Remote Admin without stealing console?
Admin is logged on in front of 2008 server, but if you RDP to it and log on as Admin to do some remote uhh.. admin, you essentially kick them off and take over their desktop.
I'm sure there's a way to fix that so both folk can work using the Admin account at the same time - might have even fixed it on one box but I've forgotten the details.
17th December 2008, 09:55 PM #2
I used to link to our old server using Internet Explorer connecting to a remote session on the server. This way it did not lock the session on the server and transfer the desktop down to me but rather create a new session for me. Could this be what you are looking for?
17th December 2008, 11:12 PM #3
Why would you want to Administer the server using "Administrator" anyway? Shouldn't you each have individual accounts so that you can shout at whoever loses their account first (if you do)
Anyway in local group policy (or domain if you run 2008...)
Computer Config > Admin Templates > Windows Components > Terminal Services > Terminal Server > Connections
In there might be an object which is "Restrict user to single session" or something which will change what you want.
Restrict Users to a Single Session
Thanks to DrPerceptron from:
PiqueABoo (19th December 2008)
17th December 2008, 11:25 PM #4
Start an rdp session on the server and then type shadow 0 at the command prompt. The first console user than gets a message to accept connection.
18th December 2008, 09:42 AM #5
In the older RDP client, I thought you had a choice of using the /console switch if you wanted to control the actual session on the server or getting a new session by default - is this not still the case?
18th December 2008, 09:48 AM #6
I always runs mstsc from the run command
mstsc /v servername /console if I want to connect to the console itself or leave it off for a different session.
Thanks to plexer from:
K.C.Leblanc (18th December 2008)
18th December 2008, 09:56 AM #7
In 2008 you can have two concurrent administration sessions running, whether one's at the console and one's remote, or both are remote.
However I don't know how happy it'd be with using the same username for both sessions.
As a note, session 0 is no longer the console session. The console session changes dynamically and session 0 is a restricted session for running services only.
19th December 2008, 10:46 AM #8
In the non-routine scenarios I want it for I'm perfectly happy having two concurrent sessions with the same Admin logon. Don't care about audit trails, it won't break anything that couldn't be broken the same way with two separate accounts, plus there's the architecture changes noted above re. session 0 (applies to Vista and 2008).
If this was a local support team, routinely accessing server to do [whatever] then yes - each would have their own special admin account for that.
By Diello in forum Windows Vista
Last Post: 25th May 2010, 04:37 AM
By brahma in forum Windows
Last Post: 18th July 2008, 04:04 PM
By Halfmad in forum Windows
Last Post: 6th June 2007, 01:43 PM
Last Post: 10th October 2006, 04:09 PM
By tosca925 in forum Windows
Last Post: 24th January 2006, 05:17 PM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)