How to turn off Terminal Services access for all users except Administrator?

This is setup by default. You would need to make sure those users that should be allowed in are in the administrators or "remote desktop users" group to allow access. If they must be admins you can take out that group and specify only certain users.

Right click my computer, manage, click "remote" tab, click "enable remote desktop on this computer", click "select remote users"

I don't know a way to change the "you don't have access to term in" message.

Hmm there is no date on this post, but all the answers here are very primitive in my opionion.

If you open "terminal services configuration" there is a tab called "permissions" Remove the remote desktop users from here, apply the settings and voila.

As for leaving a note at login. This can be done before the login screen even appears using the local group policy. (found in administrative tools)

The option you would look for is called: "interactive logon: Message text for users attempting to log on"

Hope this helps.

Ben

www.prime-networks.co.uk

If you would like to disable sessions from the command line, you can use the CHANGE LOGON command:

CHANGE LOGON {/QUERY | /ENABLE | /DISABLE}

/QUERY Query current session login mode. /ENABLE Enable user login from sessions. /DISABLE Disable user login from sessions.

This won't disconnect current sessions, but it will prevent clients from starting new sessions.

Using this method, a new client attempting to connect will receive a message which states that remote logins are currently disabled.

Right click on my computer, select manage, click on local users and groups and change the users in the terminal services group.

Option 1: check the option "deny this user permissions to log on any terminal server" on user account's terminal services profile tab.

Option 2: remote them from local remote desktop user account.

The reject message will show the reason why people can't log in.

Hope it helps.