Solved

help setting up Dell Win Foundation server for term services

Posted on 2012-04-10
8
373 Views
Last Modified: 2016-11-23
helping out someone with a new Dell server pre-configured with Windows Foundation server. they purchased an additional 5 term server client licenses. anyone have steps to follow to get this up and running so they can remote in ASAP? including getting ISP to configure DNS to resolve to the server.

thanks
0
Comment
Question by:rpliner
  • 4
  • 4
8 Comments
 
LVL 95

Accepted Solution

by:
Lee W, MVP earned 500 total points
Comment Utility
Install the Remote Desktop Services Licensing Server Role (could be a feature, don't remember off hand) and activate it.  Then add the CALs (will probably require a call to Microsoft to activate.

Then, don't be unwise, DO NOT punch a hole in your firewall to access it.  There was just an exploit on RDS that could allow a hacker to own the box... get a business class firewall with VPN capability and connect to the network with VPN.  Then connect over RDP over the VPN.
0
 
LVL 7

Author Comment

by:rpliner
Comment Utility
thanks leew. I will do that on the server.

I hear ya on the security. unfortunately, I know they don't have the resources at this time to purchase a business class firewall. Although, a sonicwall tz100 is only a few hundred and should do it. can you recommend anything to make this more secure without a VPN in case they can't / won't purchase the firewall yet?

Also, do I need to contact their ISP and have them set up some DNS records? I think they have a domain with go daddy and their ISP is AT&T.

thanks again
0
 
LVL 95

Assisted Solution

by:Lee W, MVP
Lee W, MVP earned 500 total points
Comment Utility
Untangle offers a free software UTM - I use it myself and that includes an SSL VPN.  You can also setup Routing and remote Access services on the server and enable VPN through that.

You don't NEED to setup DNS records... you may WANT to to make it easier to access the network.  Use something like "remote.thierdomain.com" but you could also use a service like no-ip.org or just directly access the IP address.
0
 
LVL 95

Expert Comment

by:Lee W, MVP
Comment Utility
And that's setup in DNS - you use a name you want to assign to the IP of the server.  The server needs a static public  IP.  If they don't have one, you either need to change that or switch to the no-ip type of service.
0
Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

 
LVL 7

Author Comment

by:rpliner
Comment Utility
I will check out untangle. they do have public static IPs so I guess I'll call the ISP and see if they can set up some DNS records as I'm sure they'd rather use a name over an IP.

thanks a lot
0
 
LVL 95

Expert Comment

by:Lee W, MVP
Comment Utility
Does the ISP manage their DNS?  They might, Godaddy might, or a third party might.  Someone NEEDS to and TYPICALLY its the domain registrar but doesn't have to be.
0
 
LVL 7

Author Comment

by:rpliner
Comment Utility
not sure. I'll check with go daddy first, then ISP since their domain is with go daddy. thx
0
 
LVL 7

Author Comment

by:rpliner
Comment Utility
thanks leew. still didn't so DNS as they are OK using the IP (it's only 3 people right now). I did set up pinholes to get them up and running, but secured it somewhat using a tutorial I found online (only certain people have access, not admin. still looking into authenticating by computer as well since they all have a travel laptop). They have agreed to get a sonicwall tz100 in the month couple of months.
0

Featured Post

What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

Join & Write a Comment

Suggested Solutions

Remote Apps is a feature in server 2008 which allows users to run applications off Remote Desktop Servers without having to log into them to run the applications.  The user can either have a desktop shortcut installed or go through the web portal to…
If your business is like most, chances are you still need to maintain a fax infrastructure for your staff. It’s hard to believe that a communication technology that was thriving in the mid-80s could still be an essential part of your team’s modern I…
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

6 Experts available now in Live!

Get 1:1 Help Now