Lost access to console when someone else connects with /console

Discussion:

(too old to reply)

snj2000

2005-07-11 18:53:03 UTC

Is there any way, from the real console, you can prevent loss of access to
the console when someone else logs into that server with /console?

The person logging in with /console gets no indication that I am at the
console loggged in, they are logging into the server using the same userid as
I used at the main console.

I get presented with the PRESS CTL/ALT/DEL prompt at the main console when
somone else remotes into the CONSOLE. If I log back in, they get forced off.

Vera Noest [MVP]

2005-07-11 23:01:22 UTC

Permalink

This is by design.
Don't use shared accounts, give every administrator his or her own
unique account with Administrator rights.
_________________________________________________________
Vera Noest
MCSE, CCEA, Microsoft MVP - Terminal Server
http://hem.fyristorg.com/vera/IT
___ please respond in newsgroup, NOT by private email ___

Post by snj2000
Is there any way, from the real console, you can prevent loss of
access to the console when someone else logs into that server
with /console?
The person logging in with /console gets no indication that I am
at the console loggged in, they are logging into the server
using the same userid as I used at the main console.
I get presented with the PRESS CTL/ALT/DEL prompt at the main
console when somone else remotes into the CONSOLE. If I log
back in, they get forced off.

snj2000

2005-07-27 20:37:05 UTC

Permalink

So, maybe we are using the wrong tool? I have a need to remotely see the
actual screen that is being displayed for the user who is logged into the
server. For example, to see an error message that is being displayed in a
window, or monitor progress of an application running. If I am not mistaken,
if I as an ADMINISTRATOR were to log into that server with MY account rather
than the account that was actually logged in AT the server, I would not "SEE"
the same desktop and windows as I would if I logged into the same account
that is logged in at the server.

So that is why I am remotely connecting using the account that is being used
at the server, but as I stated, that "steals" the console from then and they
have to CTL/ALT/DEL to log back in to get it back, which of course, forces me
out......

Post by Vera Noest [MVP]
This is by design.
Don't use shared accounts, give every administrator his or her own
unique account with Administrator rights.
_________________________________________________________
Vera Noest
MCSE, CCEA, Microsoft MVP - Terminal Server
http://hem.fyristorg.com/vera/IT
___ please respond in newsgroup, NOT by private email ___

Vera Noest [MVP]

2005-07-27 21:29:15 UTC

Permalink

You are not running an application on the console of the server,
which must run interactively all the time, are you?
If that's the case, then you have to use the same user account when
connecting directly to the console, as you describe.
But if that is the case, it's not the tool that's wrong, it's the
application :-) Have you tried running the application as a
service, with SrvAny from the Resource Kit?

If the above is not your setup, and you simply want to see if there
are any error messages on the console, or check a service which
only is accessible in the system tray on the console, then you can
use any account with administrative rights. Nobody needs to be
logged on at the physical console. You will then get a warning if
another admin is already logged on to session 0, and can choose if
you want to throw the other admin out or not.

For both scenarios above, it's still possible to achieve what you
want, with unique administrative accounts for every admin.
You can shadow the console from within a normal session to the
server. Documented here:

278845 - How to Connect to and Shadow the Console Session with
Windows Server 2003 Terminal Services
http://support.microsoft.com/?kbid=278845

_________________________________________________________
Vera Noest
MCSE, CCEA, Microsoft MVP - Terminal Server
TS troubleshooting: http://ts.veranoest.net
___ please respond in newsgroup, NOT by private email ___

Post by snj2000
So, maybe we are using the wrong tool? I have a need to
remotely see the actual screen that is being displayed for the
user who is logged into the server. For example, to see an
error message that is being displayed in a window, or monitor
progress of an application running. If I am not mistaken, if I
as an ADMINISTRATOR were to log into that server with MY account
rather than the account that was actually logged in AT the
server, I would not "SEE" the same desktop and windows as I
would if I logged into the same account that is logged in at the
server.
So that is why I am remotely connecting using the account that
is being used at the server, but as I stated, that "steals" the
console from then and they have to CTL/ALT/DEL to log back in to
get it back, which of course, forces me out......

Post by Vera Noest [MVP]
This is by design.
Don't use shared accounts, give every administrator his or her
own unique account with Administrator rights.
_________________________________________________________
Vera Noest
MCSE, CCEA, Microsoft MVP - Terminal Server
http://hem.fyristorg.com/vera/IT
___ please respond in newsgroup, NOT by private email ___
wrote on 11 jul 2005 in

Post by snj2000
Is there any way, from the real console, you can prevent loss
of access to the console when someone else logs into that
server with /console?
The person logging in with /console gets no indication that I
am at the console loggged in, they are logging into the
server using the same userid as I used at the main console.
I get presented with the PRESS CTL/ALT/DEL prompt at the main
console when somone else remotes into the CONSOLE. If I log
back in, they get forced off.