How to allow local user / group for remote desktop using GPO

Manish Chawda 431 Reputation points
2021-12-23T11:19:39.347+00:00

Hi,

Can anyone help me as to how to configure GPO to allow local user to access PC remotely. Currently I need to do manually add the user/group or whatever PC is required.

For domain users it is easy with the help of GPO

Manish

Windows Server 2016
Windows Server 2016
A Microsoft server operating system that supports enterprise-level management updated to data storage.
2,504 questions
0 comments No comments
{count} vote

4 answers

Sort by: Most helpful
  1. SUNOJ KUMAR YELURU 14,051 Reputation points MVP
    2021-12-24T05:54:28.95+00:00

    Hi @Manish Chawda

    If you need to specify the users (or groups) that can REMOTE DESKTOP (RDP) to a PC and you want to do this with Group Policy, you are in the right place:

    1. In Group Policy Management Console (GPMC.MSC) select Computer Configuration\Windows Settings\Security Settings\Restricted Groups\
    2. Right-click Restricted Groups and then click Add Group.
    3. Click the Browse button, type Remote and click the Check Names and you should see REMOTE DESKTOP USERS come up.
    4. Click OK in the Add Groups dialog.
    5. Click Add beside the MEMBERS OF THIS GROUP box then click Browse.
    6. Type the name of the domain group, then click the Check Names button, then click OK to close this box.
    7. Click OK to close this box which will complete the addition of the domain group to the Remote Desktop Users group.
    8. Go to your PC and in an elevated command prompt type GPUPDATE /FORCE to refresh the GPolicy on your PC
    9. Verify that the group has been added to under the SELECT USERS button on the REMOTE tab of the PC’s SYSTEM PROPERTIES.

    Refer - https://softwarekeep.com/help-center/how-to-enable-remote-desktop-on-windows

    If the Answer is helpful, please click Accept Answer and up-vote, so that it can help others in the community looking for help on similar topics.

    3 people found this answer helpful.
    0 comments No comments

  2. Manish Chawda 431 Reputation points
    2021-12-24T12:44:45.583+00:00

    That's for Domain Users. But I want for e.g. I have created a local user or group say james and I want give him RDP access, this I had already tried to configure as you mentioned but the user is not shown in the list. It only shows domain users.

    Please advise.


  3. Manish Chawda 431 Reputation points
    2022-01-17T04:58:34.067+00:00

    Kindly please advise.

    0 comments No comments

  4. Omar Mohamed 0 Reputation points
    2024-03-21T10:35:46.0066667+00:00

    I have the same question. but I need Local User to Access the server by RDP

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.