[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

How to configure Terminal Server 2008

Posted on 2011-10-10
10
Medium Priority
?
576 Views
Last Modified: 2012-05-12
Dear All

Can someone guide how to configure Terminal Server 2008 which I have installed on a domain controller runing windows 2008 standard with ADs..

Terminal server is fully installed with all features etc. The license are also activated.
I have assigned public ip address to it
The router is BT2wire

I want all the users to access the terminal server along with all application most importantly network drives

Does anyone know or have step by step guide including configuration on Clinton Pc, port opening etc
0
Comment
Question by:CJ
  • 7
  • 3
10 Comments
 
LVL 10

Expert Comment

by:fm250
ID: 36949916
See this links,
after installation and config, you just need to fwd port to your server from the router: port no.: 3389

http://www.windowsecurity.com/articles/configuring-windows-server-2008-terminal-services-gateway-part1.html 
http://www.dabcc.com/media.aspx?id=1

hope this helps
0
 
LVL 10

Expert Comment

by:fm250
ID: 36949930
0
 
LVL 1

Author Comment

by:CJ
ID: 36952730
Dear Fm250

Thanks for the guide. I had already seen these article he deals with enterprise version as well public CA authority.

I have already installed it properly but need a proper configuration because it's not simple in win 2008 server.

Permission need to be sorted in many places.

I need to know step by step how each service is configure as well as the appropriate permission and then setting at client end.

I am happy with port opening as I already use RDC.

My aim is that user login to terminal server and able access local network drives etc

I hope am bit more clear now

Regards
0
 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

 
LVL 10

Expert Comment

by:fm250
ID: 36952856
>>> step by step how each service is configure
if you mean the server the links shows that.

if you need to configure the end client to connect, all you need to do is to create a user and password and add that account to Remote Desktop Users then let your user know. give them the IP address or fq dns address.

you may have to either lower your security to tell your server to let any version of remote desktop or tell your client to download the latest client version.

why don't you test it and let us know if any you have any problem.

if you need to configure mapping network shares, that is another story which you could add through either group policy and a script or even startup programs.



the best thing is to test it your self and post back with what problems you have?
0
 
LVL 10

Expert Comment

by:fm250
ID: 36952887
0
 
LVL 1

Author Comment

by:CJ
ID: 36956538
Dear FM250

Here is the problem I am getting
Error message

To log on this remote computer, you must be granted the Allow log on through Terminal Services right. By default, members of the Remote Desktop Users group have this right. If you are not a member of the Remote Desktop Users group or another group that has this right, or if the Remote Desktop User Group does not have this right, you must be granted this right manually
Above is the message I get when I tried to log on as a domain users.

I have already done the followings
1.      In GPO Access this computer from Network
2.      In GPO Allow log on locally
3.      In GPO Allow logon through terminal services
4.      User is a member in Remote Desktop Users
5.      User is a member in Terminal Server Computers
6.      User is a member in Terminal Server Licenses Servers

I can logon as administrator or as user as I have the administrator rights but any other domain users cannot and get the above message.
Any help will be appreciated.
Regards
 
0
 
LVL 10

Expert Comment

by:fm250
ID: 36956893
try to login locally with that user. To see if it is not diabled.

Also make sure/ check again on the user, on the member tab if he/she is a member of Remote Desktop Users.

that error is usually becaue of not being a memeber of that group.
0
 
LVL 10

Accepted Solution

by:
fm250 earned 2000 total points
ID: 36957110
0
 
LVL 1

Author Comment

by:CJ
ID: 37052530
Dear FM250

Finally my ternial server is working fine. Thanks all for your help. Please do let me know if I need to configure or take extra precaution with security as my other branch users will logging on at all times as terminal users.

I will accept your solution as you have been great help.

I have other question open setting up VPN see if are able to help.

Regards
0
 
LVL 10

Expert Comment

by:fm250
ID: 37057650
I am glad that helped. as for security you need to advised security settings for the server such as hardware firewall, AV, updates, monitoring logs ..etc.

this link might help on that:
http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/Windows_Server_2008/Q_26894862.html?sfQueryTermInfo=1+10+2008+30+secur+window 
0

Featured Post

Get your Disaster Recovery as a Service basics

Disaster Recovery as a Service is one go-to solution that revolutionizes DR planning. Implementing DRaaS could be an efficient process, easily accessible to non-DR experts. Learn about monitoring, testing, executing failovers and failbacks to ensure a "healthy" DR environment.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
Resolving an irritating Remote Desktop connection that stops your saved credentials from being used.
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Suggested Courses

873 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question