Solved

Restricting public logon access to terminal server via remote desktop

Posted on 2013-01-16
3
333 Views
Last Modified: 2013-06-25
Hi ,

Do you have any suggestions on how to restrict user log on access to a terminal server ?

Scenario:

For instance if a public ip is pointing to a terminal server and an authenticated user can log onto the server from anywhere via remote desktop . We want only specified computers to able to log onto the terminal server so that not just anyone can log on using a public computer even though their credentials is correct .
0
Comment
Question by:alphanetworks
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 10

Expert Comment

by:CSIPComputing
ID: 38782490
You can do this in your router - restrict the RDP Port 3389 to specific inbound IP Addresses - assuming your computers that you want to connect all have static IP addresses on their broadband services.
0
 

Author Comment

by:alphanetworks
ID: 38782526
Hi ,

Thanks for the feedback but this is not what we want . We are looking more in the lines of a certificate generated and installed on the specified computers . If it's possible .
0
 
LVL 5

Accepted Solution

by:
Coffinated earned 500 total points
ID: 38790457
You can change the default port 3389 to another higher port, it should help a bit. Another solution would be to implenet a VPN/SSLVPN, which would be a prefferd method of restricting user access.
0

Featured Post

Free NetCrunch network monitor licenses!

Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!

Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!

Act now. This offer ends July 14, 2017.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Citrix XenApp, Internet Explorer 11 set to Enterprise Mode and using central hosted sites.xml file.
Possible fixes for Windows 7 and Windows Server 2008 updating problem. Solutions mentioned are from Microsoft themselves. I started a case with them from our Microsoft Silver Partner option to open a case and get direct support from Microsoft. If s…
This tutorial will walk an individual through the steps necessary to configure their installation of BackupExec 2012 to use network shared disk space. Verify that the path to the shared storage is valid and that data can be written to that location:…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses

631 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question