The title of is question is the error message I see when user(s) try to log into a windows server via a RDS.
I have googled this problem and have seen a few proposed resolutions, which I have tried and do not work. I have yet to find a resolution that does, so I need some help.
When this error was first pointed out to me, a user was trying to log in on a specific server. He is the only user that uses this server and the only one that would log into it besides one of use admins.
My first step was to remove his profile (rename with ".old") and log in the machine as him with a new profile. This did not correct the problem. Now, let me back up a min, this server is configured with Windows 2008r2 and is a virtual machine. Now, when I tried to log in as him and still did not work, I went to the VMM and connected to the machine via console to make sure my changes took. When I verified the changes, I logged out of the console as me and tried to log in, still using the console, as my user. Success!. I did receive the message that he was logged in as a temp user, therefore, I took the steps to correct that. Once corrected, I logged in (still via console) as the user and all was successful. I logged off the server, went to the RDS shortcut built, entered in user creds, still received error message.
I thought that maybe the current RDS was faulty, so I built another (just changed the by adding a "2" as the end). Tried to log in as the user, still received error message and denied log in. Now, here is the extremely puzzling part, as a domain admin, I can log into the server via RDP/RDS & console without a problem. So with that information and still thinking it is a user issue, I obtained another user's creds. This user received the same error message & was denied log in. (after clicking"ok", RDS window closes). My next step was to check the "Remote Users" group on the server. The users are added via the AD security container (Domain Users) added to the Remote Users group on the target server. Still, I added the specific user having the problem to the Remote Users group individually. Attempted to log in via the RDS, still denied, received the same error message.
Determining that this is not the particular user's profile problem, I still removed the user's profile and restarted that server. Again, I had to use the console to log into the server as the user. Tried to connect to the machine via the RDS, still receive error message.
Bottom line, the server is only allowing Domain Admins to log into the server using RDP/RDS. I have checked the event viewer and there are no error messages (that I can tell) related to the failed log in attempts. I could really use some help/advise.
I have checked the user's AD account and the second user's AD account. Each have different memberships and the only common membership is the "Domain Users" membership.
