Re: Secure Access - [WP]

Tech-Archive recommends: Speed Up your PC by fixing your registry

I believe it's User-Workstations that you're looking for (that's the
attribute name; but the functionality is what you're after).
Basically, you want to put those users in a group and only allow them to
logon to the application server. Be sure to test that out because that
attribute is usually associated with logging onto a workstation as if they
were a user. I don't know your application well enough to know if that
would work or not. It's also possible that you would instead specify the
Citrix machine as the only machine they can logon to. I haven't tried it
with Citrix in the mix but I can tell you that you can prevent them from
logging on to the other machines that way. Logon via the network is a
different right as well and you might be able to work with that.

Another location to get this type of information might be
http://www.microsoft.com/security

Al



"WILDPACKET" <WILDPACKET@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:8D55A22C-E314-4BB1-82C8-0C559FD84D2B@xxxxxxxxxxxxxxxx
Thanks for your response.

We jsut want those users to access the web based application published on
Citrix Server. Manager wants all the users to be created in AD which
makes
it harder.

I want to make sure those users just have the access to the web based app
and nothing else.

Advise please.

"Al Mulnick" wrote:

Depends on how you define "secure".
Can you give more details?

What are you using for auth on the Presentation server - AD I presume. Is
that correct?
You can create the user accounts and deny them the ability to logon to
desktops. Be careful how you go about creating denies, because it can be
computationally expensive. More information about what you want to
accomplish would be helpful.



"WILDPACKET" <WILDPACKET@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:9789A550-8358-4721-B3D5-2AED378EFE14@xxxxxxxxxxxxxxxx
New to Citrix.

Installed Presentation Server 4.0 and installed Citrix clients on the
desktop all works fine. Now the company want to give access to some
users
or
in a different company and are not in our domain. They will connect to
our
compnay using a highspeed VPN tunnel.

They will access Citrix using the browser, how can I make sure they
don't
access other resouces on our network and in the domain????

I was thinking to create a seperate OU for those users and then decide
from
thereon what to do next????

How can I make the network/domain/Servers secure???

Advise please.

Thank you.





.

Relevant Pages

  • Re: Secure Access - [WP]
    ... How can I confiugre/make sure they only logon to the Citrix Server. ... access other resouces on our network and in the domain???? ...
    (microsoft.public.windows.server.active_directory)
  • Re: Citrix & Sonicwall
    ... Citrix web Interface and the other to logon to the desktop. ... Now of course we are using SBS 2003 Premium with ISA and Citrix ...
    (microsoft.public.windows.server.sbs)
  • Re: Use printer on network and local PC at the same time..?
    ... However our network is set up so that the local PC is ... Citrix is not the network, just an application that uses it. ... attached to your computer via USB. ... Ethernet at the same time. ...
    (comp.periphs.printers)
  • RE: Remote desktop dialog box
    ... You can have them logon via Remote Desktop Web Connection, ... an application publishing program like WTSPortal, Remote Application Center, ... Citrix, Jetro or Tarantella. ... If they try to logon any other way, ...
    (microsoft.public.win2000.termserv.clients)
  • Executing Assemblies on Shared Paths
    ... can actually install anything onto the Citrix Server itself. ... farm of about 30 servers, we have to schedule in a deployment date & ensure ... We've got around this in the past by deploying onto a network share that has ... of .NET Framework Enterprise Security Policy Administration and Deployment ...
    (microsoft.public.dotnet.framework)