IE Enhanced security Terminal Server

Tutorials Win: Microsoft Windows Forum

In a Terminal Server environment, users that are not in the Administrators
group cannot access most sites, such as www.google.com, www.microsoft.com.
If the same user is made a member of Administrators they can get these sites
from the same user profile. Once they are removed from the Administrators
group, thay can no longer access the same sites (returns DNS Not Found)
I have followed all the fixes in KB908784 which addresses a Server that was
slipstreamed without Sysprep but our server was not built by cloning and
after still applying the remedies the simptoms prevail. Checked for hijacks
and nothing suspicious.
The only clue I have is a breif dialogue refering to HARDENIE that quickly
disappears.
Top

Re: IE Enhanced security Terminal Server by Robert

Robert
Mon Mar 03 06:20:36 PST 2008

"KorporateKlown" <KK@KK.nopam.bo> wrote in message
news:%zNyj.21729$421.5320@news-server.bigpond.net.au...
> In a Terminal Server environment, users that are not in the Administrators
> group cannot access most sites, such as www.google.com, www.microsoft.com.
> If the same user is made a member of Administrators they can get these sites
> from the same user profile. Once they are removed from the Administrators
> group, thay can no longer access the same sites (returns DNS Not Found)
> I have followed all the fixes in KB908784 which addresses a Server that was
> slipstreamed without Sysprep but our server was not built by cloning and
> after still applying the remedies the simptoms prevail. Checked for hijacks
> and nothing suspicious.
> The only clue I have is a breif dialogue refering to HARDENIE that quickly
> disappears.


A long time ago I remember a W2000 user reporting a similar symptom.
The workaround then was disabling the DNS Client (e.g. net stop dnscache)

However, now that we have ProcMon to trace file and registry accesses
I would try capturing two traces, testing the identical scenario under each
user, and compare them.

BTW I suspect this is not the best newsgroup to be discussing this in.
It really has less to do with IE and more to do with the OS.


HTH

Robert Aldwinckle
---


Top

Re: IE Enhanced security Terminal Server by KorporateKlown

KorporateKlown
Mon Mar 03 13:25:43 PST 2008

Tried disable DNS Client service - no success. I will try tracing under
ProcMon and I agree posting in OS NG may be a better option. I will post
here the results for any following this thread - Thanks Bob

"Robert Aldwinckle" <robald@techemail.com> wrote in message
news:%23H6HDnTfIHA.288@TK2MSFTNGP02.phx.gbl...
> "KorporateKlown" <KK@KK.nopam.bo> wrote in message
> news:%zNyj.21729$421.5320@news-server.bigpond.net.au...
>> In a Terminal Server environment, users that are not in the
>> Administrators
>> group cannot access most sites, such as www.google.com,
>> www.microsoft.com.
>> If the same user is made a member of Administrators they can get these
>> sites
>> from the same user profile. Once they are removed from the Administrators
>> group, thay can no longer access the same sites (returns DNS Not Found)
>> I have followed all the fixes in KB908784 which addresses a Server that
>> was
>> slipstreamed without Sysprep but our server was not built by cloning and
>> after still applying the remedies the simptoms prevail. Checked for
>> hijacks
>> and nothing suspicious.
>> The only clue I have is a breif dialogue refering to HARDENIE that
>> quickly
>> disappears.
>
>
> A long time ago I remember a W2000 user reporting a similar symptom.
> The workaround then was disabling the DNS Client (e.g. net stop
> dnscache)
>
> However, now that we have ProcMon to trace file and registry accesses
> I would try capturing two traces, testing the identical scenario under
> each
> user, and compare them.
>
> BTW I suspect this is not the best newsgroup to be discussing this in.
> It really has less to do with IE and more to do with the OS.
>
>
> HTH
>
> Robert Aldwinckle
> ---
>
>


Top