Yog tias koj muaj ntau qhov chaw AD, koj yuav tsum tau tos kom txog thaum nws rov ua dua rau txhua tus tswj hwm sau npe ua ntej mus rau kauj ruam tom ntej. Qhov no feem ntau siv tsis pub dhau 15 feeb.
kauj ruam 2
Cia peb muab cov cai rau pab pawg los tswj cov ntu ntu ntawm txhua tus RDSH servers:
Teem-RDSPermissions.ps1
$Group = "RDP_Operators"
$Servers = @(
"RDSHost01",
"RDSHost02",
"RDSHost03"
)
ForEach ($Server in $Servers) {
#Делегируем право на теневые сессии
$WMIHandles = Get-WmiObject `
-Class "Win32_TSPermissionsSetting" `
-Namespace "rootCIMV2terminalservices" `
-ComputerName $Server `
-Authentication PacketPrivacy `
-Impersonation Impersonate
ForEach($WMIHandle in $WMIHandles)
{
If ($WMIHandle.TerminalName -eq "RDP-Tcp")
{
$retVal = $WMIHandle.AddAccount($Group, 2)
$opstatus = "успешно"
If ($retVal.ReturnValue -ne 0) {
$opstatus = "ошибка"
}
Write-Host ("Делегирование прав на теневое подключение группе " +
$Group + " на сервере " + $Server + ": " + $opstatus + "`r`n")
}
}
}
kauj ruam 3
Ntxiv cov pab pawg hauv zos Cov neeg siv tej thaj chaw deb Desktop ntawm txhua tus RDSH servers. Yog tias koj cov servers tau muab tso rau hauv kev sib tham sau, ces peb ua qhov no ntawm qib sau:
Rau ib lub servers peb siv pab pawg txoj cai, tos kom nws siv rau ntawm cov servers. Cov neeg uas tub nkees heev tos tuaj yeem ua kom cov txheej txheem siv cov qub gpupdate, nyiam dua nruab nrab.
kauj ruam 4
Cia peb npaj cov ntawv PS nram qab no rau "tus tswj hwm":
Txhawm rau ua kom PS tsab ntawv yooj yim khiav, peb yuav tsim lub plhaub rau nws hauv daim ntawv cmd nrog tib lub npe raws li tsab ntawv PS:
RDSManagement.cmd
@ECHO OFF
powershell -NoLogo -ExecutionPolicy Bypass -File "%~d0%~p0%~n0.ps1" %*
Peb muab ob qho ntaub ntawv tso rau hauv ib daim nplaub tshev uas yuav nkag mus rau "tus tswj hwm" thiab hais kom lawv rov nkag mus. Tam sim no, los ntawm kev khiav cov ntaub ntawv cmd, lawv yuav tuaj yeem txuas mus rau cov kev sib tham ntawm lwm tus neeg siv hauv RDS Duab Ntxoo hom thiab yuam kom lawv tawm (qhov no tuaj yeem pab tau thaum tus neeg siv tsis tuaj yeem txiav txim siab "dai" kev sib tham).
Nws zoo li qhov no:
Rau "tus thawj tswj hwm"
Rau tus neeg siv
Ob peb nqe lus kawg
Nuance 1. Yog tias cov neeg siv kev sib tham uas peb tab tom sim kom tau txais kev tswj hwm tau pib ua ntej Set-RDSPermissions.ps1 tsab ntawv raug tua ntawm tus neeg rau zaub mov, ces "tus thawj tswj" yuav tau txais qhov yuam kev nkag. Qhov kev daws teeb meem ntawm no yog pom tseeb: tos kom txog thaum tus neeg siv tswj tau nkag rau hauv.
Nuance 2. Tom qab ob peb hnub ntawm kev ua haujlwm nrog RDP Duab Ntxoo, peb pom cov kab laum nthuav lossis cov yam ntxwv: tom qab qhov kawg ntawm kev sib tham duab ntxoov ntxoo, cov lus bar hauv lub tais ploj mus rau tus neeg siv txuas nrog, thiab kom tau txais nws rov qab, tus neeg siv yuav tsum rov qab los. - nkag mus. Raws li nws hloov tawm, peb tsis nyob ib leeg: sij hawm, ob, peb.
Yog tag nrho. Kuv xav kom koj thiab koj cov servers noj qab nyob zoo. Raws li ib txwm muaj, kuv tos ntsoov rau koj cov lus pom hauv cov lus thiab hais kom koj ua cov lus nug luv luv hauv qab no.