Prevent shadowing from other Admin user?

  • Thread starter Thread starter nospam@nospam.spam
  • Start date Start date
N

nospam@nospam.spam

Guest
Hi - is it possible to prevent other Admin users from shadowing the session
of another user with Admin permissions (win server 2003 with terminal
services)? I know I could switch off the view remote sessions option, but I
don't want that, I just want to stop another admin from viewing my
session...preferably with an odd technical message rather than "this right
has been denied by another admin" or some such message, if you get my
drift....

Cheers.
 
Re: Prevent shadowing from other Admin user?

It's seldom a good idea to try to solve a problem in the human
relationship sector with a technical solution.
That said, you can remove their Remote Control right in the rdp-tcp
permissions. But since they are Administrators, they will be able to
set the permissions back.
A better solution might be to only allow shadowing *with* permission
of the user who is being shadowed, for everyone. Then nobody can spy
on nobody.
_________________________________________________________
Vera Noest
MCSE, CCEA, Microsoft MVP - Terminal Server
TS troubleshooting: http://ts.veranoest.net
___ please respond in newsgroup, NOT by private email ___

<nospam@nospam.spam> wrote on 13 feb 2008 in
microsoft.public.windows.terminal_services:

> Hi - is it possible to prevent other Admin users from shadowing
> the session of another user with Admin permissions (win server
> 2003 with terminal services)? I know I could switch off the view
> remote sessions option, but I don't want that, I just want to
> stop another admin from viewing my session...preferably with an
> odd technical message rather than "this right has been denied by
> another admin" or some such message, if you get my drift....
>
> Cheers.
 
Re: Prevent shadowing from other Admin user?

> It's seldom a good idea to try to solve a problem in the human
> relationship sector with a technical solution.
> That said, you can remove their Remote Control right in the rdp-tcp
> permissions. But since they are Administrators, they will be able to
> set the permissions back.
> A better solution might be to only allow shadowing *with* permission
> of the user who is being shadowed, for everyone. Then nobody can spy
> on nobody.
> _________________________________________________________
> Vera Noest

Thanks Vera!
 
Back
Top