posted 1/4/2010 by sqlscottgleason - Views: [2411]
Configure Group Policy to keep RDP session to a minimum on your SSIS boxes
Active Directory Group Polices overwrite local policies on a windows server. With that fact in mind, if you know that here are no AD policies for RDP Session time limits, and you have admin privileges to the local box, and you need to introduce some type of time restrictions on the RDP session; this might be exactly what you are looking for.
Before we begin, I do need to bring up the old warning: Don’t implement this in production if you don’t know what you’re doing or how these changes will affect your server. If you have a Server Admin Type in your department/company, ask them to implement these steps for you.
The heavy warning comes from the consequences; Messing up Group Polices can: (worst case) stop production, be very time consuming to fix, cause you to beg a Server Admin to fix your box.
1. Click Start, click Run, and type in gpedit.msc to bring up the local group policy Editor
2. Now, click and expand on the red items below to navigate to the RDP’s “Session Time Limits” settings.
Just in case you need it, here is the Technet link which full describes the settings and their meaning: http://technet.microsoft.com/en-us/library/cc726057(WS.10).aspx
3. You MUST configure how long an active setting can last. I set mine to 16 hours.
4. Next set your allowed time limit for uses to be connected, but not doing anything.
5. Now configure how long an X’ed user’s session will last.
6. Next, Terminate any session that has reached its time-out limit.
7. Finally let windows do cleanup work right after a users disconnects.
And thats all there is to it.
Think I've missed something or do you know a better way? I welcome your comments.
Scott Gleason