Solved

DC and RDP

Posted on 2012-12-22
5
313 Views
Last Modified: 2012-12-23
I have to install RDS services on a WIndows 2008R2 DC

(I know it is not a recommended thing to do for security reasons but I have to do it anyway...)

What specific things do I have to do in order to make this solution work?

Thank you
0
Comment
Question by:gadsad
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
5 Comments
 
LVL 70

Accepted Solution

by:
KCTS earned 500 total points
ID: 38716237
OK - It would be remiss of me not to point out that this is not recommended as you are blowing a big whole in your security by effectively allowing users to log-on locally to the DC.

If you really must do this (under protest and having pointed out the folly of the practice) ,then see http://technet.microsoft.com/en-us/library/cc742817(v=ws.10).aspx
0
 
LVL 9

Expert Comment

by:jsdray
ID: 38716278
Just don't forget to verify RDP is enabled in the firewall....
0
 
LVL 17

Expert Comment

by:WORKS2011
ID: 38716292
- make sure port 3389 points to the server ip in your firewall
- on the server / Start / right click Computer / Remote Settings / Remote / Remote Desktop check "Allow connections from computers running any versions of Remote Desktop (less secure) / Select Users, add user.
- Start / Administrator Tools / ADUC / expand Sever.local / Builtin / Remote Desktop Users make sure user is added here.

If you wish to make this more secure you can change the IP address from 3389 to 3390 or another port however if you wish to do this open another thread and I'll run you through it.
0
 
LVL 12

Expert Comment

by:DLeaver
ID: 38717426
As stated above if you are accessing this externally then its good practice to change the port from the default.

You can do this either by redirecting from a different source port to the destination port of 3389 (eg external port 3391 to 3389 on your firewall.

Or you can change the listening port on your server outlined here

http://support.microsoft.com/kb/306759

If you choose option 2 make sure you open the custom port on your windows firewall as well

You would also need to append the port number to the IP before connecting
0
 

Author Closing Comment

by:gadsad
ID: 38717444
thank you
0

Featured Post

Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Last week, our Skyport webinar on “How to secure your Active Directory” (https://www.experts-exchange.com/videos/5810/Webinar-Is-Your-Active-Directory-as-Secure-as-You-Think.html?cid=Gene_Skyport) provided 218 attendees with a step-by-step guide for…
In-place Upgrading Dirsync to Azure AD Connect
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question