help setting up Dell Win Foundation server for term services

helping out someone with a new Dell server pre-configured with Windows Foundation server. they purchased an additional 5 term server client licenses. anyone have steps to follow to get this up and running so they can remote in ASAP? including getting ISP to configure DNS to resolve to the server.

thanks
LVL 7
king daddyAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Lee W, MVPTechnology and Business Process AdvisorCommented:
Install the Remote Desktop Services Licensing Server Role (could be a feature, don't remember off hand) and activate it.  Then add the CALs (will probably require a call to Microsoft to activate.

Then, don't be unwise, DO NOT punch a hole in your firewall to access it.  There was just an exploit on RDS that could allow a hacker to own the box... get a business class firewall with VPN capability and connect to the network with VPN.  Then connect over RDP over the VPN.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
king daddyAuthor Commented:
thanks leew. I will do that on the server.

I hear ya on the security. unfortunately, I know they don't have the resources at this time to purchase a business class firewall. Although, a sonicwall tz100 is only a few hundred and should do it. can you recommend anything to make this more secure without a VPN in case they can't / won't purchase the firewall yet?

Also, do I need to contact their ISP and have them set up some DNS records? I think they have a domain with go daddy and their ISP is AT&T.

thanks again
0
Lee W, MVPTechnology and Business Process AdvisorCommented:
Untangle offers a free software UTM - I use it myself and that includes an SSL VPN.  You can also setup Routing and remote Access services on the server and enable VPN through that.

You don't NEED to setup DNS records... you may WANT to to make it easier to access the network.  Use something like "remote.thierdomain.com" but you could also use a service like no-ip.org or just directly access the IP address.
0
10 Tips to Protect Your Business from Ransomware

Did you know that ransomware is the most widespread, destructive malware in the world today? It accounts for 39% of all security breaches, with ransomware gangsters projected to make $11.5B in profits from online extortion by 2019.

Lee W, MVPTechnology and Business Process AdvisorCommented:
And that's setup in DNS - you use a name you want to assign to the IP of the server.  The server needs a static public  IP.  If they don't have one, you either need to change that or switch to the no-ip type of service.
0
king daddyAuthor Commented:
I will check out untangle. they do have public static IPs so I guess I'll call the ISP and see if they can set up some DNS records as I'm sure they'd rather use a name over an IP.

thanks a lot
0
Lee W, MVPTechnology and Business Process AdvisorCommented:
Does the ISP manage their DNS?  They might, Godaddy might, or a third party might.  Someone NEEDS to and TYPICALLY its the domain registrar but doesn't have to be.
0
king daddyAuthor Commented:
not sure. I'll check with go daddy first, then ISP since their domain is with go daddy. thx
0
king daddyAuthor Commented:
thanks leew. still didn't so DNS as they are OK using the IP (it's only 3 people right now). I did set up pinholes to get them up and running, but secured it somewhat using a tutorial I found online (only certain people have access, not admin. still looking into authenticating by computer as well since they all have a travel laptop). They have agreed to get a sonicwall tz100 in the month couple of months.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Server OS

From novice to tech pro — start learning today.