Hi
I have a SBS 2012 and a 2012 RDS each on their own hardware. I wanted to
restrict remote users from accessing a single application on the RDS server. I
used SRP to disallow non administrator users. It did not work. The standard
users are not able to access any application. In order to get the users back and
working, I removed the policy created, ran gpupdate /force and waited for
everything to go back to normal. It did not.
Now non of my standard users can access the RDS server at all. They are
automatically logged out immediately. However; administrator users can login no
problem.
The System event log shows the Group Policies are working (4). The
Application event log shows:
1. Event 4006 - The Windows logon process has failed to spawn a user
application. Application name: . Command line parameters:
C:\Windows\system32\userinit.exe.
2. Event 1530 -
Windows detected your registry file is still in use by other applications or
services. The file will be unloaded now. The applications or services that hold
your registry file may not function properly afterwards.
DETAIL -
2 user registry handles leaked from
\Registry\User\S-1-5-21-1606980848-1708537768-839522115-10175:
Process 3324
(\Device\HarddiskVolume2\Windows\System32\winlogon.exe) has opened key
\REGISTRY\USER\S-1-5-21-1606980848-1708537768-839522115-10175\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers
Process
168 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key
\REGISTRY\USER\S-1-5-21-1606980848-1708537768-839522115-10175\Printers\DevModePerUser
SANSTECH
