Gaby Gabriels

@yellowzebra904790

Roodeschool, Netherlands Joined Jan 2026

Only @yellowzebra904790 can see everyone listening in. Visitors see a rotating sample.

Gaby Gabriels echoed

Gaby Gabriels

@yellowzebra904790 · Jan 12, 2026

Kassem Farhat

@kassem · Jan 10, 2026 3:43 pm

Just had a nice chat with the head of the “Dashboard Manager” software. He's a good guy! I think I'll buy Dashboard Manager.

~Kassem Farhat
Member of GLOBAL VIRTUAL TRUST

496 likes 629 responses

Gaby Gabriels

@yellowzebra904790 · Jan 12, 2026

Allowing RDP access by AD account with limited system access?

We have a policy against "shared" Active Directory accounts to maintain the ability to audit access to individuals. However there are situations that require exceptions, mainly for Labs with instrumentation that is managed by multiple people over longer periods.
In these cases, we create AD "shared" accounts and "lock" them to particular computers by specifying those computers in the "log into" list. This works great for the most part.
However, the lab managers would like to be able to remotely monitor these systems during extended sampling analyses. We can grant the "shared" account RDP rights BUT NLA (Network Level Authentication) won't allow the account to remote login unless it has login rights to \*both\* the remote system \*and\* the local system the user is trying to remote \*from\*. I'd rather not allow the "shared" account rights to login to any system except the instrumentation computers. But NLA is forcing me to allow login to the remote computer as well, apparently.
Has anyone else run across this issue? How did you resolve it?

29 likes 113 responses