- This topic is empty.
-
Posts
-
Hi – my first post – hope someone can help, as my query seems to be the opposite of what everyone else is trying to achieve!
Dell-Wyse T10 (7.1_130) to Windows 2008 R2 RDP farm
We are trying to block the user-side connection of USB thumb sticks, drives, disks, cameras etc in our environment and prevent their map through to the RDP session [the opposite of what everyone else seems to want to do]…but, we also want to permit the TCX redirection of “permitted” USB peripherals, smartcards and thumb sticks.
We had this working in our proof of concept environment, perfectly – but something, or someone, has changed our wnos.ini in rollout and we cannot get back to the position we desire.
Our current wnos is posted below – in the TCX section we have the ID’s of two permitted devices (a USB smartcard reader and a portable USB CD-drive) and in the RDP session section we have Mapdisks=no
As it stands then…
our end users cannot plug-in any USB thumb stick they like (Mapdisks=no in RDP session stopping this) – this is good;
but our permitted TCX portable CD-drive is not mapping through to the RDP session; and,
our permitted TCX USB smartcard reader is mapping through and working fine.If we change to Mapdisks=yes – users can plug-in any USB thumb drive they like and the portable CD drive works. Its as if TCX is being ignored?
Can anyone please help us with where our mis-config is? We are going mad!
Many thanks!
;*************************************************************
;* *
;* This wnos.ini file was generated with the *
;* Configuration File Generator 6.3.06 *
;* Copyright by Thomas Moellerbernd *
;* *
;* https://technicalhelp.de *
;* *
;*************************************************************
;*************************************************************
;* General 1 *
;*************************************************************
autoload=0
AdminMode=yes Admin-Username=MEAFMNABMKAGNAABNGBCMDAJNO Admin-Password=MIACMIADMKAGMEAJNI
Privilege=None
;*************************************************************
;* General 2 *
;*************************************************************
;*************************************************************
;* General 3 *
;*************************************************************
AutoSignoff=yes Shutdown=yes
Shutdowncounter=20
SysMode=VDI toolbardelay=3 EnableToolbarOneSession=yes ToolbarStay=1
;*************************************************************
;* Peripherals *
;*************************************************************
Language=Uk
Device=audio Volume=25
MicBoost=yes
;*************************************************************
;* Display *
;*************************************************************
Desktop=wallpaper.jpg Layout=stretch
Screensaver=10 LockTerminal=0 Type=1
;*************************************************************
;* TCX *
;*************************************************************
Device=vusb ForceRedirect=0x08e6,0x3437,0x0b,0x00,0x00
Device=vusb ForceRedirect=0x0e8d,0x1806,0x08,0x02,0x50
;*************************************************************
;* Time *
;*************************************************************
Timeserver=10.110.101.1:123;
; If you are using an older version of WTOS code please use:
; TimeZone= 'GMT' ManualOverride=yes Daylight=yes Start=030507 End=100507
TimeZone='Greenwich Mean Time' ManualOverride=yes
;*************************************************************
;* Network *
;*************************************************************
SignOn=No
MaxVNCD=1
VncPassword="MJAJNIBANABNNNBEMB" Encrypt=yes
VncPrompt=No Accept=5 ActiveVisible=yes
RapportDisable=yes
;*************************************************************
;* General Session *
;*************************************************************
SessionConfig=ALL Smartcards=yes VUSB_AUDIO=yes VUSB_VIDEO=yes Fullscreen=yes
;*************************************************************
;* RDP *
;*************************************************************
SessionConfig=RDP EnableNLA=no USBRedirection=TCX
;
;- RDP Session 1 -
;- Each line but the last must end with a '' -
;
CONNECT=RDP
Host=EH-RDF-01.domain.org.uk
Description="User Desktop"
AutoConnect=Yes
Reconnect=no
Fullscreen=yes
Rdp_No_Wallpaper=yes
Domainname=domain
Smartcards=yes
Mapdisks=no
Disablesound=No
UnmapUSB=yes
AudioQualityMode=2
RDPAudioRecord=yes
LocalCopy=no
**
This will become a trail&error thing.
Start by adding
SessionConfig=ALL UnmapUSB=yes
and removing all Smartcard=yes links.
- You must be logged in to reply to this topic.