Hi there,
We have one domain with 40 sites. On each site is a RODC, wich also has RDS. (RDS the old way, no broker installed)
The RODC's are 2008R2 and 2012R2 servers.
Everything works fine, however everyone can access all servers as a straight forward RDS user (no VDI).
Everyone is in the build in group for remote user.
I'd like to have people that work on ServerA only are able to contact serverA for RDS.
B on B, C on C and so on ... This for all 40 sites.
I made a policy for each site allowing RDS_A to access server A and so on. Is this the right way to do it, or can I do it having less GPO's ? I need 40 right now!!! Linking the policy to the right OU, containing the specific server.
Something is still wrong, because other people still can access serverA.
I get into it, but maybe I'm doing it wrong, so please give me some advice :)
Thanks,
Ben.
Ben van der Meer