Hello, We are using your 2XApplicationServer and we want to limit the user access to one folder like for instance e:\home and more we want to restreint their access only in their home folder ( Like Linux ), how to do it ? Also, we noticed that if you launch for example "Wordpad", you can click on "computer" and see, open, delete and create a document anywhere ( security hole. ), How to remove some options or just not make them visible ? regards eric
The rights on folders etc... are OS managed, your admin must have a good policy in place for managing the user rights through windows DACL, ACL and SACL together with NTFS permissions. The security hole would happen only if the OS is not locked down. Doing these lock downs is an art of compromise between how strict you want to be and how much time in debugging and maintaining you are ready to spend. Also you must make sure the user has enough rights to move around. In theory once a user has access to a published app when he launches an RDP session he can run the same set of executables and has access to the same rights on the TS. There is no difference in security management between published apps and terminal services/remote desktop. Again to have access only to their home folder ( my documents ) standard windows rules and group policies on the domain apply. Thanks
