ywainberg
asked on
remote assistance in server 2008
i have server 2008 and xp machin ,and i want to allow offer assistance to my client
how can i configure it using gpo on server 2008
how can i configure it using gpo on server 2008
ASKER
it only works when firewall is off and only on ip address no net bios name
then you have issues in the firewall config and dns resolving, netbios resolving shouldn't be used anymore.
is tcp 3389 open also?
ASKER
how do i add it to gpo?add "3389:TCP:*:Enabledffer Remote Assistance" to the same location as 135?
There are many ways to offer remote assistance. You mention your server but I'm not sure how you want to involve your server. Please clarify how the server is being used in this situation. Also take note that windows remote desktop feature is not secure and is one of the most hacked ports on the internet. (3389) I would recommend going to a encrypted connection or at least changing the windows remote desktop port to something else. You can google the info on how to do it. Its a simple registry entery change.
If you're wanting others to be able to connect to your server then create and account or group that has the correct access. You don't need to edit the group policies directly for that. However they will have to use passwords as the server will not allow any kind of remote access without one.
If you're wanting others to be able to connect to your server then create and account or group that has the correct access. You don't need to edit the group policies directly for that. However they will have to use passwords as the server will not allow any kind of remote access without one.
yes ywainberg you can add something like that, maybe with another desc
ASKER
i insert all the rules but it still does not work with firewall on ,only with firewall off
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
can you be more specific?which port should be open in the firewall for remote assistance to work?
%SystemRoot%\system32\msra
%windir%\PCHealth\HelpCtr\
%windir%\PCHealth\HelpCtr\
%windir%\system32\sessmgr.
Windows Firewall Settings [Port Exceptions]
135:TCP:*:Enabledffer Remote Assistance
Offer Remote Assistance: Enabled
Permit remote control of this computer: Allow helpers to remotely control the computer
Helpers:
Some security group you choose.