|
 |  |  |  |  |  |  |
| Welcome to Windows Vista Forums. Our forum is dedicated to helping you find solutions with any problems, errors or issues you are experiencing with Windows Vista. The Vista forum also covers news and updates and has an extensive Windows Vista tutorial section that covers a wide range of tips and tricks. |
| |||||||
 |
| |
08-09-2007
| #1 (permalink) |
| | Terminal Server secure implementation Hi all, I want to install Terminal server in the lan so Users can log in from home and connect to there pc's. I need to implement a secure way so I read that TS will encrypt all the traffic between the client and server with RCA Rc4 and a key of 128 bit so Its a vpn. why many companies first installed a vpn client on the custumers pc to connect to a cisco pix and then after ther connection is established they open up terminal client and connect to the terminal server. I dont see the benefits of encrypting twice the data.. I thing that using just the Ts encryption is enough to establish a vpn over the internet also changing the default 3389 port and puting the TS server in the dmz. Am I wrong? Thanks, Juan |
My System Specs |
|
08-15-2007
| #2 (permalink) |
| | Re: Terminal Server secure implementation No, TS over the Internet isn't a VPN. It is, however, one of several forms of remote access to information on your network. TS over the Internet is perfectly acceptable, provided that you secure it correctly. By default, RDP authenticates the client to the server, but doesn't authenticate the server to the client. To avoid the potential for a man-in-the-middle attack, you need to enable mutual authentication. This requires Windows Server 2003 SP 1 configured to use TLS for server authentication and data encryption, RDP 5.2 on the clients, and some other prerequisites. See http://support.microsoft.com/?id=895433 for more details. Steve Riley steve.riley@microsoft.com http://blogs.technet.com/steriley "juanp" <juanbabi@gmail.com> wrote in message news:1186708413.635579.88000@j4g2000prf.googlegroups.com... > Hi all, > > I want to install Terminal server in the lan so Users > can log in from home and connect to there pc's. > > I need to implement a secure way so I read that TS > will encrypt all the traffic between the client and > server with RCA Rc4 and a key of 128 bit so Its a vpn. > why many companies first installed a vpn client on the > custumers pc to connect to a cisco pix and then after > ther connection is established they open up terminal > client and connect to the terminal server. > > I dont see the benefits of encrypting twice the data.. > I thing that using just the Ts encryption is enough to > establish a vpn over the internet also changing the > default 3389 port and puting the TS server in the dmz. > > Am I wrong? > > Thanks, > > Juan > |
| My System Specs |
|
| Thread Tools | |
| |
Similar Threads | ||||
| Thread | Forum | |||
| Vulnerability in Microsoft Server Message Block implementation [Vista most at Risk!] | System Security | |||
| Terminal Server Licensing error | Vista General | |||
| CAL for Windows Server 2008 in a Terminal Server environment | .NET General | |||
| nt terminal server | Vista General | |||
| Get-Process on Terminal Server | PowerShell | |||
