all my users at the office use terminal services to do their work on one of our servers. As the system is installed, some of my users need to access the system from remote locations outside the firewall. I have setup everything so that they can have access.
My problem is the following, i want to restrict a few users from login in to their terminal service session if they are outside the firewall without using a VPN. Because, right know, if somebody knows the server address (and they all know it), they can login to their session.
Is there a type of a user policy I can use that would allow a user to login the terminal services if the machine he uses to connect is within a private IP address range?