Remote Access to application

Hello EE. We just installed MS Great Plains on our network. Currently we have a Hub and spoke network with Active Directory and a single domain. The spoke sites are connected to the hub via site to site IPSEC VPN tunnels.We have another location that is affliated with us but is not currently part of our domain but we would like to give them access to Great Plains. Trying to figure out what is the best way to accomplish this. Putting them on our domain is an option but they do have there own domain and Exchange Server and would not want to change that if possible. Any suggestions would be greatly appreciated.
InSearchOfAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

AnuroopsunddCommented:
Can you build a trust between the domains?
0
awaggonerCommented:
The way we do this is via published applications using Citrix XenApp.

This reduces the amount of bandwidth you need to around 30-35kbps a session.  If you try to run GP across the WAN, it will choke unless you have a relatively huge amount of bandwidth.

If you don't want the expense of purchasing a full blown Citrix installation, you should at least set up a terminal server (or multiple servers depending on capacity and redundancy needs).   This will be much less expensive than Citrix, but not quite as efficient.
0
awaggonerCommented:
Using published apps or terminal services also means you do not need to modify AD in any way.  New accounts will need to be created in the GP domain, but that will bu much easier than anything else.  Plus these new accounts can be given very limited permission to the GP domain.  This will help with security configurations.
0
Big Business Goals? Which KPIs Will Help You

The most successful MSPs rely on metrics – known as key performance indicators (KPIs) – for making informed decisions that help their businesses thrive, rather than just survive. This eBook provides an overview of the most important KPIs used by top MSPs.

InSearchOfAuthor Commented:
Well, what would a trust relationship accomplish?

What would be the difference between Terminal Services and Citrix?
0
awaggonerCommented:
A trust relationship would tie the two domains together.

Terminal services is built into Windows servers.  It just needs terminal services CALs for the server you want to be a terminal server.  Of course, you would want your terminal server be used for this role only.

Citrix XenApp is a third party solution that's sits on top of MS terminal services.  XenApp uses a more efficient protocol than RDP and has better features for printing and publishing apps, as well as management.
0
robdlCommented:
I would recommend  RD Web Access (Server2008R2) to publish apps. All you would need then is to purchase TS Cals and not all the Citrix stuff.
0
awaggonerCommented:
A Microsoft only deployment can work well.  It will depend on your companies needs.  'All that Citrix stuff' may not be needed for this environment, but it does provide quite a few features which could help enhance the end user experience.  It shouldn't be dismissed out of hand.
0
robdlCommented:
Cost becomes a factor with Citrix licensing + Microsoft licensing. In a Microsoft only deployment, only RD User or Device CAL's need to be purchased.
0
awaggonerCommented:
Yes, the Citrix option is more expensive.  However, the additional cost may be worth it.  I did not say it was the best solution for this case, but it does deserve consideration.

The straight MS solution may be the correct solution in this case.

In my network we are using Great Plains and Citrix published apps, and have for a decade.  It has worked very well for us across our WAN and for our LAN users.  Each time our Citrix licenses come up for renewal we re-evaluate the need to keep using Citrix and continue to see the value.

The above is my opinion based on experience and research.  This solution is not the only method, and other options could be used.  We will be evaluating VDI soon to see if it can replace XenApp.
0
robdlCommented:
VMWare Horizon, which is a brand new SaaS solution (includes a solution for mobile devices) may be worth taking a look at also.
0
InSearchOfAuthor Commented:
Thanks for the info guys. What is the difference between Terminal Services and RD Web Access? The remote location is running a mix of XP and Win 7.
0
robdlCommented:
Terminal services is now called RD Web Access (Remote Desktop Web Access). The legacy Terminal Services of just using RDP to connect to a server desktop is still an option but published apps is definitely less process intensive and lowers bandwidth. Here's a really good link that should explain it.

http://technet.microsoft.com/en-us/library/cc731923.aspx
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Remote Access

From novice to tech pro — start learning today.