Solved

Remote Windows Server Access

Posted on 2013-01-11
6
232 Views
Last Modified: 2013-02-19
Right now we use VPN access to our desktops, which gives us full network access. We have switched everyone to Win7 laptops so that they may take them home. What is the best way to setup full access to our network (according to their Active Directory permissions)? We have three Windows 2008 servers and two 2003 servers. The 2003 servers will be removed shortly. We are not yet virtualized. Thanks, Greg
0
Comment
Question by:grgar
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 1

Accepted Solution

by:
kirankkhbl earned 200 total points
ID: 38766846
For windows server 2008 you can configure PPTP VPN, they can login using active directory credential (not recommended because low security and old technology)

http://blogs.technet.com/b/rrasblog/archive/2009/03/25/remote-access-deployment-part-2-configuring-rras-as-a-vpn-server.aspx

If you can afford for windows server 2008 R2 or 2012, go for Direct access
http://technet.microsoft.com/en-us/magazine/hh922970.aspx
0
 

Author Comment

by:grgar
ID: 38769283
Thank you for the excellent articles which explain the solutions. Unfortunately, we need high security so option 1 is out. The second one is great and we do have a 2008 R2 server available, but the two public IP addresses  may be a problem. Your second recommendation deserves half credit, at least, if I find another solution that will work for us; otherwise, it is a great solution and very detailed article and so good to know of. I am going to leave this question open for right now to see if there are any other solutions. Thank you!
0
 
LVL 25

Assisted Solution

by:Lionel MM
Lionel MM earned 300 total points
ID: 38769910
Is there a reason you no longer want to use VPN? With Windows 7 you have more option of different types of VPN and different security levels. http://technet.microsoft.com/en-us/security/ff730324. Or do you want options other than VPN?
0
MS Dynamics Made Instantly Simpler

Make Your Microsoft Dynamics Investment Count  & Drastically Decrease Training Time by Providing Intuitive Step-By-Step WalkThru Tutorials.

 

Author Comment

by:grgar
ID: 38773550
Thanks for another great article. I will have to read through and go over this with my work colleague. We have been using RSA VPN tokens that route us through our downtown office --  but we had been recently considering switching to LogMeIn, as the RSAs are expiring, and by passing the VPN server downtown.

But, that still left us with the situation of not having a desktop to login to, if we take our laptops home with us. I like the sounds of the Direct Access method, and I need to look further as to how this or the other methods provide a user profile to login to and allow them a view of the network as if they were at their desktop or whether the setup recognizes their work laptop remotely and all the mapped drive settings work as if they were directly connected to network. Thanks, Greg
0
 
LVL 25

Assisted Solution

by:Lionel MM
Lionel MM earned 300 total points
ID: 38774143
Yes logmein won't work if there is no system to log into. Plus logmen in subscriptions can get expensive and an ongoing monthly cost. Don't get me wrong--it s great product but I don't see it as a solution for the situation you described. If you want users to have network resources, to go through the domain login process then solutions like VPN's and direct access are the way to go.
0
 

Author Closing Comment

by:grgar
ID: 38907909
Thanks all. We have decided to keep our VPN tokens and go through our VPN server at headquarters and setup a server with Direct Access for our local network access. Our RSA VPN tokens are only $107 per user for 3 years. Logmein didn't provide the same screen resolution.Thanks again for your input!
0

Featured Post

U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Background Information Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
If you are a web developer, you would be aware of the <iframe> tag in HTML. The <iframe> stands for inline frame and is used to embed another document within the current HTML document. The embedded document could be even another website.
This tutorial will show how to configure a new Backup Exec 2012 server and move an existing database to that server with the use of the BEUtility. Install Backup Exec 2012 on the new server and apply all of the latest hotfixes and service packs. The…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question