Solved

DC and RDP

Posted on 2012-12-22
5
312 Views
Last Modified: 2012-12-23
I have to install RDS services on a WIndows 2008R2 DC

(I know it is not a recommended thing to do for security reasons but I have to do it anyway...)

What specific things do I have to do in order to make this solution work?

Thank you
0
Comment
Question by:gadsad
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
5 Comments
 
LVL 70

Accepted Solution

by:
KCTS earned 500 total points
ID: 38716237
OK - It would be remiss of me not to point out that this is not recommended as you are blowing a big whole in your security by effectively allowing users to log-on locally to the DC.

If you really must do this (under protest and having pointed out the folly of the practice) ,then see http://technet.microsoft.com/en-us/library/cc742817(v=ws.10).aspx
0
 
LVL 9

Expert Comment

by:jsdray
ID: 38716278
Just don't forget to verify RDP is enabled in the firewall....
0
 
LVL 17

Expert Comment

by:WORKS2011
ID: 38716292
- make sure port 3389 points to the server ip in your firewall
- on the server / Start / right click Computer / Remote Settings / Remote / Remote Desktop check "Allow connections from computers running any versions of Remote Desktop (less secure) / Select Users, add user.
- Start / Administrator Tools / ADUC / expand Sever.local / Builtin / Remote Desktop Users make sure user is added here.

If you wish to make this more secure you can change the IP address from 3389 to 3390 or another port however if you wish to do this open another thread and I'll run you through it.
0
 
LVL 12

Expert Comment

by:DLeaver
ID: 38717426
As stated above if you are accessing this externally then its good practice to change the port from the default.

You can do this either by redirecting from a different source port to the destination port of 3389 (eg external port 3391 to 3389 on your firewall.

Or you can change the listening port on your server outlined here

http://support.microsoft.com/kb/306759

If you choose option 2 make sure you open the custom port on your windows firewall as well

You would also need to append the port number to the IP before connecting
0
 

Author Closing Comment

by:gadsad
ID: 38717444
thank you
0

Featured Post

Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article runs through the process of deploying a single EXE application selectively to a group of user.
This article explains the steps required to use the default Photos screensaver to display branding/corporate images
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…

740 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question