Re: How to Publishing applications on Terminal Server 2003?
From: Patrick Rouse [MVP] (anonymous_at_discussions.microsoft.com)
Date: 02/01/04
- Next message: The Major: "new program memory hog uses delphi7, paradox tables??????"
- Previous message: Patrick Rouse [MVP]: "Bit of a problem"
- In reply to: Linke Loetje: "Re: How to Publishing applications on Terminal Server 2003?"
- Messages sorted by: [ date ] [ thread ]
Date: Sat, 31 Jan 2004 16:31:15 -0800
There are solutions to restrict access to only certain
computers, i.e. IPSec/L2TP VPN using Computer Certificates
or 3rd party applications like Claudio's SecureRDP, at
www.terminal-services.net.
Patrick Rouse
Microsoft MVP - Terminal Server
www.workthin.com
>-----Original Message-----
>Your correct. Thanks.
>The IIS server is already used for secure OWA.
>Because I don't like to have several client's to connect
to the company
>it's, I presume for all users, easier to understand and
use.
>But now, the more advanced users can choose between IIS
or RDP.
>OWA will become obsolete because they will have Office
and other
>applications through RDP.
>Now what I don't like is that any RDP user on the
internet has direct access
>to the Terminal server.
>With OWA and a SSL-certificate our company users had to
have a Certificate
>which makes it a bit more difficult for external users to
connect to our
>company. It looks like there isn't perfect solution.
>
>"Patrick Rouse [MVP]"
<anonymous@discussions.microsoft.com> schreef in
>bericht news:7fbf01c3e840$3c62e150$a601280a@phx.gbl...
>Remember that RDP is already encrypted, so your SSL is
>only used if people connect to your TS with TSWeb. RDP
>Logons with Remote Desktop are encrypted.
>
>What I'm reinforcing is that SSL does NOT add any security
>to your RDP logon, only to the IIS logon. Once the user
>logs on to your IIS Server they communicate directly with
>the TS via RDP on TCP Port 3389, not HTTPS on TCP Port
443.
>TSWeb only facilitates the delivery of the Remote Desktop
>Client to the end user.
>
>Patrick Rouse
>Microsoft MVP - Terminal Server
>www.workthin.com
>
>>-----Original Message-----
>>I haven't installed it yet but the programm looks very
>promising.
>>It only install's on the server and uses the excisting
>SSL-connection.
>>I'll try the programm next week.
>>
>>Thanks
>>
>>
>>"Patrick Rouse [MVP]"
><anonymous@discussions.microsoft.com> schreef in
>>bericht news:749a01c3e81a$fdcf97a0$a301280a@phx.gbl...
>>Another inexpensive program is Applauncher, at
>>www.applauncher.com
>>
>>Patrick Rouse
>>Microsoft MVP - Terminal Server
>>www.workthin.com
>>
>>>-----Original Message-----
>>>This is probably not the product i'm looking for.
>>>What i'm looking for is not another client that
connect's
>>with the Company
>>>network. I'm quite satisfied with the kind of connection
>>I use now. That is,
>>>through Internet explorer. The only thing lacking is
some
>>kind of
>>>application filter on terminal server depending on user
>>and/or usergroup. I
>>>want to use the same user-logon's that already excist in
>>the domain, so I
>>>put Terminal Server in a seperat OU en added group
>>policies to this OU.
>>>That's probably why standard securtiy and programm
>>publishing on Terminal
>>>server is so riggid.
>>>Any suggestions?
>>>
>>>"Cláudio Rodrigues" <Claudio.Rodrigues@NOSPAM-Terminal-
>>Services.NET> schreef
>>>in bericht news:%
>23YJG7sA6DHA.1556@tk2msftngp13.phx.gbl...
>>>> My product, WTSPortal. Check my website and download a
>>fully functional
>>>> 30-day evaluation.
>>>>
>>>> --
>>>> Cláudio Rodrigues
>>>>
>>>> Microsoft MVP
>>>> Windows Technologies - Terminal Services
>>>> http://www.terminal-services.net
>>>> "Linke Loetje" <noemail@hotpop.com> wrote in message
>>>> news:uSARic$5DHA.2524@TK2MSFTNGP11.phx.gbl...
>>>> > I'm looking for a programm to Publish applications
on
>>Terminal server
>>>> 2003.
>>>> > I know about Citrix, Hoblink and Canaveral IQ. All
>>companies advertise
>>>> with
>>>> > features which are allready included in Terminal
>>Server 2003.
>>>> >
>>>> > I have the following configuration working.
>>>> > - 1 * ISA2000 server
>>>> > - 1 * SSL-certificate enabled IIS5.0 server on
>>Windows 2000 on which
>>>tsweb
>>>> > is running
>>>> > - 1 * Terminal Server 2003.
>>>> > From home I can make a SSL-connection with my
>>Internet Explorer to my
>>>> > IIS-server and connect to Terminal server.
>>>> > I've read all kinds of Microsoft documentation on
how
>>to secure Terminal
>>>> > server, so users are unable to do much damage when
>>snooping around. I
>>>can
>>>> > secure the desktop so knowone is able to use the
>>installed programm's
>>>like
>>>> > Office or Navision. When loosing up security, users
>>are able to use
>>>these
>>>> > programm's but also programm's I don't like them to
>>use, especially on a
>>>> > server.
>>>> >
>>>> > So, a secure Internet/Network environment is not the
>>issue.
>>>> > I'm missing one last option to make this
>>configuration complete; a
>>>SIMPLE,
>>>> > CHEAP ADD-ON to publish programm's on Terminal
Server
>>2003. If it can be
>>>> > done without the above mentioned product's or if
>>there is a Freeware or
>>>> > other programm to Use I would very much like to know
>>about it.
>>>> >
>>>> > greetings.
>>>> >
>>>> >
>>>> >
>>>> >
>>>>
>>>>
>>>
>>>
>>>.
>>>
>>
>>
>>.
>>
>
>
>.
>
- Next message: The Major: "new program memory hog uses delphi7, paradox tables??????"
- Previous message: Patrick Rouse [MVP]: "Bit of a problem"
- In reply to: Linke Loetje: "Re: How to Publishing applications on Terminal Server 2003?"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
