Windows 10: I need to force workstations on my Domain to use Domain CA generated Remote Desktop...

Discus and support I need to force workstations on my Domain to use Domain CA generated Remote Desktop... in Windows 10 Gaming to solve the problem; Good day!! I have a question that I have been researching the answer to but have come up empty. Here is my situation:I have a small Domain I manage and... Discussion in 'Windows 10 Gaming' started by Jim A. Chartier, May 23, 2025 at 11:17 AM.

  1. JIM A. CHARTIER
    Jim A. Chartier Win User

    I need to force workstations on my Domain to use Domain CA generated Remote Desktop...


    Good day!! I have a question that I have been researching the answer to but have come up empty. Here is my situation:I have a small Domain I manage and I utilize RDP to manage all systems both workstations and servers from my own desk, I have an issue where my Tenable Security scanner log a vulnerability "SSL Self-Signed Certificate 57582" one of the solutions is to use a CA signed certificate instead of the self signed certificate. I have a Domain CA deployed, I have created the certificate template for Remote Desktop services, the CA is naturally in the Trusted Root Certificate Authority s

    :)
     
    Jim A. Chartier, May 23, 2025 at 11:17 AM
    #1
  2. AIBADSIDDIQUI
    aibadsiddiqui Win User

    CredSSP error on domain joined workstations

    Unable to understand this situation. All workstations without domain are able to take remote sessions without difficulty, While all domain joined workstation throwing error of CredSSP oracle server remediation.
     
    aibadsiddiqui, May 23, 2025 at 11:20 AM
    #2
  3. JEREMY-K
    jeremy-k Win User
    Win10 domain workstation, "currently no power options available", tied to group security policy and remote desktop connection

    Hello Windows community.

    I know there are many threads about the issue of the dreaded "There are currently no power options available." But I haven't found one that fixes my problem.

    Initial issue: Windows 10 Pro PC's, connected to a work domain (Windows Server 2012), get the "There are currently no power options available" message when trying to shutdown or restart the PC.

    Action taken: Group Policy Editor > Computer Configuration > Windows Settings > Security Settings > Local Policies > User Rights Assignment > 'Shut down the system' ... The only way to add the user to the list of users for this policy, is
    to log on to the server itself, go into Group Policy Management Editor, delve into the domain controller, find the policy, and add the user there.

    Result: After restarting the Win10 Pro workstation, the power options are now available from the start menu. Yay... HOWEVER...

    New issue: If I use "remote desktop connection" on the workstation, and connect to the server, the user now has the permission to access restart and shutdown options from the start menu for the server itself... Which is not acceptable. We
    can't have people accidentally turning off the server through their remote desktop connection (which is used frequently, in order to access MYOB on the server).

    EDIT Question: How can I add "users" to this policy for only the workstations, and not when they are connected to the server through Remote Desktop Connection?

    Additional information:

    • EDIT: I noticed on
      Technet      , that the defaults for the policy is different depending on whether it is for "workstations and servers" or for "Domain Controllers". The "Workstations and servers" policy includes the group "users", whilst the "domain controllers" policy does not.
    • Windows 7 Pro PC's, connected to the domain in the exact same way, do not have the issue. All users on Windows 7 PC's are not added to the security policy, they CAN access shut down options for their local PC, but CANNOT access shutdown options for the
      server during a remote desktop connection. This means it is working as intended for Windows 7 Pro PC's.
    • The current list of users and groups that are listed in the security policy is as follows:
      • Administrators
      • Backup Operators

    Thank you in advance for any help.

    Sincerely,

    Jeremy
     
    jeremy-k, May 23, 2025 at 11:20 AM
    #3
  4. SCLOGAN
    SCLogan Win User

    I need to force workstations on my Domain to use Domain CA generated Remote Desktop...

    Remote Connection to desktop in domain only

    Hello,

    I am looking for a Windows 10 solution for an admin remoting to a domain user's desktop only from their domain profile on a domain computer.

    For context: The use case is I am wanting to give an admin the ability to remote into a user's computer whenever they require immediate assistance (such as admin prompts to install software.) Remote Desktop Connection is not working for this use case, because it signs the end user out. I also looked at the Windows 10 app Quick Assist, but it could potentially allow the admin to access the computer from outside of the scope of the domain (such as on their home computer).

    Is there anything that works like Quick Assist or other remote software but can be stripped down to only work between users on the domain?

    Thanks!
     
    SCLogan, May 23, 2025 at 11:20 AM
    #4
Thema:

I need to force workstations on my Domain to use Domain CA generated Remote Desktop...

Loading...

  1. I need to force workstations on my Domain to use Domain CA generated Remote Desktop... - Similar Threads - need force workstations

  2. I need to force workstations on my Domain to use Domain CA generated Remote Desktop...

    in Windows 10 Software and Apps
    I need to force workstations on my Domain to use Domain CA generated Remote Desktop...: Good day!! I have a question that I have been researching the answer to but have come up empty. Here is my situation:I have a small Domain I manage and I utilize RDP to manage all systems both workstations and servers from my own desk, I have an issue where my Tenable...

  3. Remote laptop domain login

    in Windows 10 Software and Apps
    Remote laptop domain login: I have laptops Hybrid joined to an Azure/AD domain. I want remote users to have the ability to login that have never logged into their laptop before. The laptops are joined to our AD domain.I am told users could do this in the past by logging in with the full e-mail address...

  4. Remote laptop domain login

    in Windows 10 Gaming
    Remote laptop domain login: I have laptops Hybrid joined to an Azure/AD domain. I want remote users to have the ability to login that have never logged into their laptop before. The laptops are joined to our AD domain.I am told users could do this in the past by logging in with the full e-mail address...

  5. Password Policies in Domain not Applying to Workstations

    in AntiVirus, Firewalls and System Security
    Password Policies in Domain not Applying to Workstations: We are trying to apply some changes to the password policies for the domain users.We have verify everything from scope, delegation, inheritance block and still can't seem to find the issue. Which is that whenever the user tries changing the password using CTL+ALT+DELETE it...

  6. Password Policies in Domain not Applying to Workstations

    in Windows 10 Gaming
    Password Policies in Domain not Applying to Workstations: We are trying to apply some changes to the password policies for the domain users.We have verify everything from scope, delegation, inheritance block and still can't seem to find the issue. Which is that whenever the user tries changing the password using CTL+ALT+DELETE it...

  7. Password Policies in Domain not Applying to Workstations

    in Windows 10 Software and Apps
    Password Policies in Domain not Applying to Workstations: We are trying to apply some changes to the password policies for the domain users.We have verify everything from scope, delegation, inheritance block and still can't seem to find the issue. Which is that whenever the user tries changing the password using CTL+ALT+DELETE it...

  8. Domain Admin does not have admin privileges on domain Win10 workstation

    in AntiVirus, Firewalls and System Security
    Domain Admin does not have admin privileges on domain Win10 workstation: Domain Admin does not have admin privileges on domain Win10 workstation: Environment:DC/AD: Windows Server 2016Workstation: Windows 10 Enterprise 2OH2 19042.1110 Issue:As a member of the "Domain Admins" and "Administrators" groups, a user "sean" is denied elevated privileges...

  9. Workstations not identifying domain upon restart

    in Windows 10 Network and Sharing
    Workstations not identifying domain upon restart: Good morning, I hope everyone is well today, because I'm thoroughly stumped. Here's the situation. At my company, we have a remote office with 3 workstation inside of it. I'll call the workstations PC1, PC2, and PC3. This office has a direct connection with our main network,...

  10. Remote desktop to an Azure joined PC on corporate domain

    in Windows 10 Customization
    Remote desktop to an Azure joined PC on corporate domain: Hello, I wondered if someone can help. I am trying to set up a remote worker, who will need to use a home PC to RDP into their work PC which is on a corporate LAN. I have everything set up and I can establish an RDP connection BUT I am unable to log in using "*** Email...