Overview
Terminal Service & Remote Desktop allow you to access your computer/server virtually anywhere with Internet access. They are very useful and commonly used. However, there is no way to pre-authenticate client or have centralized Authorization Policy settings. Now, with Windows Server 2008 Terminal Service Gateway, we can make use of all this features.
Reference
Configuring the Windows Server 2008 Terminal Services Gateway (Part 1)
Dmitrii blog: Windows Terminal Services Gateway
Steps (Outline only, refer to reference links for Detailed Steps)
Setup the TS Gateway Server
- On a server with Windows Server 2008 installed
- Add "Terminal Services" role, select "TS Gateway" as Role services
- Create a Certificate for SSL connection (Common name must be pointing to the TS Gateway Server IP)
- At "TS Gateway Manager", configure the following:
- Install the Cert created at Step 2 to the TS Gateway Server
- Configure the "Connection Authorization Policies (CAP)"
- Configure the "Resource Authorization Policies (RAP)"
Connect to Remote Desktop/Terminal Services thru TS Gateway
- For Windows XP / Windows Server 2003 (Not needed for Vista)
- Download and Install "Remote Desktop Connection 6.0 Terminal Services Client" by this Link
- Open "Remote Desktop Connection", click "Options >>"
- Go to "Advanced" Tab, "Settings"
- Select "Use these TS Gateway server settings" and input the Server name (Common name of the SSL Certificate) and Logon method.
- Press "OK" to exit and enter the IP of the computer you want to connect. Beware that the IP here is for the TS Gateway, so it should be IP within the TS Gateway's local network.
- Click "Connect" to start the connection.
沒有留言:
發佈留言