RE: [ActiveDir] TS GPO and Citrix Settings

[Ryan A. Conrad]

HKLM\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services.  Already have tried the deletion but you have to keep on doing it if you want to make changes to Citrix.  I was hoping there was a “Disable Secure RDP” registry setting that wouldn’t gray anything out (as in W2K).   -Ryan From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Derek Harris Sent: Monday, October 10, 2005 4:05 PM To: ActiveDir@mail.activedir.org Subject: RE: [ActiveDir] TS GPO and Citrix Settings   If you just want to make a quick change, go into the registry and delete the policy subtrees (from HKCU or HKLM, or both).  They'll come back on the next policy refresh, but it'll give you a few minutes.  I can't remember off the top of my head where those setting are stored: [software\policies], [software\microsoft\windows\current version\policies]   From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Ryan A. Conrad Sent: Monday, October 10, 2005 11:17 AM To: ActiveDir@mail.activedir.org Subject: [ActiveDir] TS GPO and Citrix Settings We are experiencing what appears to be a strange problem (although it’s probably expected for all I know) with Terminal Service settings on W2K3 boxes.  A GPO at our application server container sets various settings (timeout values, encryption, etc…) for all systems (regardless of Admin/Application mode).  The behavior is when any TS setting is set by a GPO the setting is grayed out and even administrators cannot change the settings.   This itself would not be an issue, however, the default behavior of Citrix is to take the RDP settings and therefore we cannot change the ICA settings which presents a problem. So aside from blocking policy inheritance on the OUs where there are terminal servers does anyone know of a way to un-gray the settings for W2K3? This was not an issue in W2K.   Hopefully I’ve explained well enough.  Thanks in advance,   Ryan