Solved

Windows 2008 RDS Gateway Server - IIIS - Security

Posted on 2010-09-08
4
481 Views
Last Modified: 2012-05-10
Hello

I have enabled TS Gatewaye on my server. Clients can RDP to from outside and authenicate against the server.

I have noticed that is if i type in the name of the server in a URL http://ts.domain.com then i get the default IIS page. Is there away to stop that I see this as secuirty hole.

I tried the server http redirect option redirecting to https://ts.domain.com/ts but this breaks the authenication.

Any ideas on how to make the Gateway more secure while still allowing it authenicate.

thank you

john
0
Comment
Question by:escadmin
  • 3
4 Comments
 
LVL 3

Accepted Solution

by:
SangramGohil earned 250 total points
ID: 33644552
Hi,

Use URL rewrite in IIS7

i think it will not break authentication also

http://www.iis.net/download/urlrewrite

give it a try.

formula could be like
Requested URL : Matches the pattern
Using: Regular Expression
Pattern :(.*)

Logical Group

Condition : {HTTPS}
Matches the pattern
OFF$

Action Type :Redirect

Redirect URL: https://{http_host)/ts

give it a try in test lab first
0
 

Author Comment

by:escadmin
ID: 33650955
Will look at the application this weekend. I need to find what exactly RDS Gateway is conencting to on the inside.

John
 
0
 

Author Comment

by:escadmin
ID: 33827171
The problem is i cannot redirect it. Last week I had someone scan my server. Nothing uploaded etc. I wish MS would have something about locking down the Terminal server gateway. I award you the points as no one else responded.
0
 

Author Closing Comment

by:escadmin
ID: 33827176
No answers to locking down the server.
0

Featured Post

What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

Join & Write a Comment

You might have come across a situation when you have Exchange 2013 server in two different sites (Production and DR). After adding the Database copy in ECP console it displays Database copy status unknown for the DR exchange server. Issue is strange…
A safe way to clean winsxs folder from your windows server 2008 R2 editions
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…
Windows 8 came with a dramatically different user interface known as Metro. Notably missing from that interface was a Start button and Start Menu. Microsoft responded to negative user feedback of the Metro interface, bringing back the Start button a…

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now