This user right is required for a user account to create global objects during Terminal Services sessions. Users can still create session-specific objects without being assigned this user right.

Caution

• Assigning this user right can be a security risk. Assign this user right only to trusted users.
  
  

Default:

• Administrators
  
  
• Local System
  
  
• Services
  
  

You can configure this security setting by opening the appropriate policy and expanding the console tree as such: Computer Configuration\Windows Settings\Security Settings\Local Policies\User Rights Assignment\

For specific instructions about how to configure security policy settings, see Edit security settings on a Group Policy object.

For more information, see:

• User Rights Assignment
  
  
• Assign user rights for your local computer
  
  
• Security Configuration Manager tools