Sign in as an administrator to change this setting remote desktop
Set access privileges for Remote DesktopYou can set access privileges at each client computer using Sharing preferences. To make changes on a client, you must use the name and password of a user with administrator privileges on the computer. Show Set access privileges from client computersTo prepare a client computer for administration, you enable Remote Management and set administrator access privileges in Sharing preferences. You can set access privileges for all users or specific user accounts.
Change client administrator privilegesYou can check and change the administrator privilege settings of client computers using Remote Desktop. After you add client computers to a computer list, you can use the Change Client Settings command to change their administrator access privileges. To maintain a secure Remote Desktop environment, regularly review administrative settings. You can also assign limited privileges to certain users so they can only do specific tasks, thus reducing the chances that subadministrators can do harm. If youre using directory services to designate administrator privileges, you dont need to change the settings on the clients. You dont need to make a selection on every page of the Change Client Settings assistant. You can click Continue to move to the next set of settings.
Set access privileges using directory servicesIf the client computers are bound to a directory service, you can grant Remote Desktop administrator access to specific groups in the directory without enabling any local users. Because you can grant access using named groups from your directory services domain, you dont have to add users and passwords for authorization. When directory services authorization is enabled on a client, the user name and password an administrator enters when authenticating to the computer are checked in the directory. If the name belongs to one of the Remote Desktop access groups, the administrator is granted the access privileges assigned to the group.
Enable Remote Desktop guest accessAllow one-time access to a Remote Desktop administrator who doesnt have a user name or password for the client computer. Each time the Remote Desktop administrator wants to control the client computer, the administrator must request permission. WARNING: Granting access to control a screen is the most powerful feature in Remote Desktop, and it allows unrestricted access.
Choose what a non-administrator can doYou can control what a non-administrator can do when using Remote Desktop. When a non-administrator opens Remote Desktop, it operates in user mode. You can control which tasks a non-administrator can perform in this mode. For example, you might not allow non-administrators to copy or delete files, but you might allow them to observe screens and send messages. Changing what a non-administrator can do is no substitute for enabling proper access privileges in the Sharing pane of System Preferences on the client computer. For information, see About access privileges. Each task can be enabled independent of the others, or you can enable all Remote Desktop features for non-administrator users. Make sure youre logged in as an administrator user.
|