Thank you for your update.
Based on the gpresult.txt file, I found that only the LocalAdmins has the
RemoteInteractiveLogonRight right on the server. This means that the Remote
Desktop Users group does not have permission to logon this server remotely.
As a result, the user cannot logon remotely, although it is a member of
Remote Desktop Users group.
Please edit the GPO: servers, and add the Remote Desktop Users group in the
policy Allow log on through Terminal Services to check if the issue can be
In addition, it looks as if there is something wrong with the Restricted
That configuration means that no user/group should belong to the group
For more information about restricted groups policy, please refer to the
Description of Group Policy Restricted Groups
I look forward to your response.
Microsoft Online Support
Microsoft Global Technical Support Center
Get Secure! - www.microsoft.com/security
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
This posting is provided "AS IS" with no warranties, and confers no rights.