Find us on social media

Client area
RDPUsersWindows4 min read

Create additional RDP users

Create additional users with RDP access to manage your VPS without using the Administrator account.

By default, only the Administrator account can connect via RDP. Create additional users for team members or specific services.

Step 1 — Create a new user

powershell
# Create user with password
net user DevUser "SecureP@ssw0rd!" /add

# Set password to never expire (optional for service accounts)
net user DevUser /expires:never
WMIC USERACCOUNT WHERE "Name='DevUser'" SET PasswordExpires=FALSE

Step 2 — Add to Remote Desktop Users group

powershell
net localgroup "Remote Desktop Users" DevUser /add

This grants RDP access without giving full administrator privileges.

Step 3 — Grant administrator access (optional)

Only if the user needs admin rights:

powershell
net localgroup Administrators DevUser /add

Step 4 — Verify the user

powershell
# List all users
net user

# Check user details
net user DevUser

# List Remote Desktop Users
net localgroup "Remote Desktop Users"

Step 5 — Test the connection

Disconnect from your current RDP session and connect with the new credentials:

  • Username: DevUser
  • Password: the one you set

Create multiple users at once

powershell
$users = @(
    @{Name="Developer1"; Pass="Dev1P@ss2024!"},
    @{Name="Developer2"; Pass="Dev2P@ss2024!"},
    @{Name="Monitoring"; Pass="Mon1t0r!ng2024"}
)

foreach ($user in $users) {
    net user $user.Name $user.Pass /add
    net localgroup "Remote Desktop Users" $user.Name /add
    Write-Host "Created user: $($user.Name)"
}

Limit concurrent RDP sessions

Windows Server allows multiple simultaneous RDP sessions. To limit:

powershell
# Open Group Policy
gpedit.msc

Navigate to: Computer ConfigurationAdministrative TemplatesWindows ComponentsRemote Desktop ServicesRemote Desktop Session HostConnections

Set Limit number of connections to your desired maximum.

Remove a user

powershell
# Remove from RDP group
net localgroup "Remote Desktop Users" DevUser /delete

# Delete the user entirely
net user DevUser /delete

Security recommendations

  • Use strong, unique passwords for each user
  • Only add users to Administrators group when absolutely necessary
  • Regularly audit user accounts: net user
  • Remove accounts that are no longer needed
  • Consider enabling Network Level Authentication (NLA) for additional security

Tip

For team environments on your Baires Host VPS, create individual accounts rather than sharing the Administrator password. This provides accountability through event logs and allows you to revoke access individually.

Was this guide helpful?
← Back to Windows Server