Re: SMS over port 80

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: Cathy Moya [MS] (camoya_at_online.microsoft.com)
Date: 07/24/04 

Date: Fri, 23 Jul 2004 17:01:19 -0700

Um, I'm not really sure what you are asking for. Shed further light on . . .
what exactly?
Somehow your managers were told by Microsoft that something was possible,
but what are you asking about?

It's been a while since I worked with any Citrix stuff, but if I remember
correctly, it was rather like remote desktop is in Windows, only using the
Citrix proprietary protocol instead of RDP. So in that case, you would be
downloading the Citrix client and running it on a local computer, but your
session would be hosted on the remote Citrix server. Yeah, you can do file
copy, like you can with remote desktop, but that "host" computer running the
Citrix client isn't really in the picture. So - how are you going to install
the SMS client software and associate it with the site? How is it going to
connect to a management point or client access point to get its
configuration information? I doubt that would be possible through the Citrix
file transfer mechansim. As the last sentence down there says, the client
would still have to connect through the VPN - and fairly regularly - to
really be part of the site.

Am I getting close to what you're asking? 

-- 
Cathy Moya, MCSE: Security, MCT
Technical Writer, Enterprise Management Content Group
Check out the SMS Technical FAQ:
http://www.microsoft.com/technet/prodtechnol/sms/sms2003/techfaq/default.mspx
This posting is provided AS IS with no warranties and confers no rights.
"LasvegasOps" <LasvegasOps@discussions.microsoft.com> wrote in message
news:FA454896-30B2-4364-9059-47BD77807CF9@microsoft.com...
> This seems similar to what we are looking for, Cathy can you shed further
light on this, some how my managers where told by microsoft that this was
possible, I also herd the same thing from the LANDesk rep who came to visit
us, does microsoft have a white paper explaining this further, or is this
not really possible to do.. I need to clarify this to my managers in the
morning.   Thanks,
>
>
>
> In short - no.
>
> With Citrix to an internet facing server (TS), the client can be any OS
that
> runs the Citrix client and the machine initiating the connection is
isolated
> from the domain by the Citrix client software. (For example you can go to
> your friend's house, download the Citrix client for whatever OS they might
> have and connect).  Client drives may be mapped into the session to allow
> file copy via Citrix depending on administrator settings, but the physical
> client machine is not 'connected' to the domain in any other way.
>
> In this scenario, the 'clients' are not really ever associated with the
> network through a VPN or LAN connection so they are not part of the
> 'managed' space.  If you had these users join the domain and connect
through
> VPN from time to time you could potentially manage them with SMS. (Or wait
> for SP1 for workgroup support and use VPN).
>
> "Cathy Moya [MS]" wrote:
>
> > Mark, I'm not sure about your scenario: Are you talking about having a
bunch
> > of computers live on the internet, not behind a firewall, just part of a
> > workgroup? Where is the SMS server in this scenario? How does its domain
> > relate to the workgroup computers?
> >
> > The workgroup scenario requires NetBIOS. How would you be handling your
> > NetBIOS name resolution in this internet scenario?
> >
> > -- 
> > Cathy Moya, MCSE: Security, MCT
> > Technical Writer, Enterprise Management Content Group
> >
> > Check out the SMS Technical FAQ:
> >
http://www.microsoft.com/technet/prodtechnol/sms/sms2003/techfaq/default.mspx
> > This posting is provided AS IS with no warranties and confers no rights.
> >
> > "Mark" <anonymous@discussions.microsoft.com> wrote in message
> > news:1c71601c452eb$c9d072d0$a601280a@phx.gbl...
> > > Is it possible to have SMS 2003 sp1 beta work on
> > > workgroups across the internet without using VPN?
> >
> >
> >

Relevant Pages

  • Re: SMS over port 80
    ... We did discover that using Citrix or Terminal server client will not work ... I feel that this would be a great feauture to have in SMS 2003 and I bet others ... > Somehow your managers were told by Microsoft that something was possible, ...
    (microsoft.public.sms.admin)
  • Kikkert Security Advisory: Potentially serious security flaw in Citrix Client
    ... consideration and after advising 'Citrix' first. ... affected as I have no longer access to a Citrix server to do this myself... ... Serious security flaw in Citrix Client ...
    (Bugtraq)
  • Citrix Metaframe Presentation Server bypassing policies
    ... Vulnerability in Presentation Server allow to user bypass citrix policy ... Citrix Presentation Server policy is used for admins to restrict the user ... IP client, servers, Users, o Client Name. ...
    (Pen-Test)
  • CITRIX
    ... Citrix Metaframe Training ... Citrix Ica Client ... Citrix Presentation Server Vs Citrix Metaframe ... Citrix Access Gateway Serial Number ...
    (comp.publish.electronic.misc)
  • Re: The new wave of insanity....
    ... So my client sent my reports and the vendors technical defence to ... A guy who spent his whole life at a national lab as a BSME, and a very competant, very dilligent, very practical and high detail but no-nonsense guy and we tell each other all these same stories just like yours. ... He, also, had tons of stories of how managers told him how to do things and he said they can't be done and in the end he does them the way THEY tell him and, sure enough, the project fails and then the managers listen to him and ask him to get it to work, the second time around, however it can be done. ...
    (sci.research.careers)