Policy
Set rules for remote control of Remote Desktop Services user sessions
Microsoft Windows
Policy overview
Key metadata and intent for this policy.
Supported OS tags: Windows7, WindowsServer2003, WindowsServer2008, WindowsVista, WindowsXP
If you enable this policy setting, administrators can interact with a user's Remote Desktop Services session based on the option selected. Select the desired level of control and permission from the options list: 1. No remote control allowed: Disallows an administrator to use remote control or view a remote user session. 2. Full Control with user's permission: Allows the administrator to interact with the session, with the user's consent. 3. Full Control without user's permission: Allows the administrator to interact with the session, without the user's consent. 4. View Session with user's permission: Allows the administrator to watch the session of a remote user with the user's consent. 5. View Session without user's permission: Allows the administrator to watch the session of a remote user without the user's consent. If you disable this policy setting, administrators can interact with a user's Remote Desktop Services session, with the user's consent.
Registry values
How enabled and disabled states update the registry.
No explicit registry values are set for enabled or disabled states.
Policy elements
Inputs and configuration options exposed by this policy.
| Scope | Element | Type | Registry mapping | Constraints & behavior | Copy |
|---|---|---|---|---|---|
| Computer | Options: ID TS_RemoteControl_Levels | enum | Path SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services Value name Shadow Type REG_DWORD | Options: No remote control allowed (0), Full Control with user's permission (1), Full Control without user's permission (2), View Session with user's permission (3), View Session without user's permission (4) |