Solved

Restricting public logon access to terminal server via remote desktop

Posted on 2013-01-16
3
331 Views
Last Modified: 2013-06-25
Hi ,

Do you have any suggestions on how to restrict user log on access to a terminal server ?

Scenario:

For instance if a public ip is pointing to a terminal server and an authenticated user can log onto the server from anywhere via remote desktop . We want only specified computers to able to log onto the terminal server so that not just anyone can log on using a public computer even though their credentials is correct .
0
Comment
Question by:alphanetworks
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 10

Expert Comment

by:CSIPComputing
ID: 38782490
You can do this in your router - restrict the RDP Port 3389 to specific inbound IP Addresses - assuming your computers that you want to connect all have static IP addresses on their broadband services.
0
 

Author Comment

by:alphanetworks
ID: 38782526
Hi ,

Thanks for the feedback but this is not what we want . We are looking more in the lines of a certificate generated and installed on the specified computers . If it's possible .
0
 
LVL 5

Accepted Solution

by:
Coffinated earned 500 total points
ID: 38790457
You can change the default port 3389 to another higher port, it should help a bit. Another solution would be to implenet a VPN/SSLVPN, which would be a prefferd method of restricting user access.
0

Featured Post

Enroll in May's Course of the Month

May’s Course of the Month is now available! Experts Exchange’s Premium Members and Team Accounts have access to a complimentary course each month as part of their membership—an extra way to increase training and boost professional development.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
vSphere VM Sysprepped + deleted a snapshot 3 104
NTP time source for DC 3 88
Unable to hit site 2 52
Configure maximum recipients in MS EXchange 2016 2 54
Know what services you can and cannot, should and should not combine on your server.
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
This tutorial will show how to configure a new Backup Exec 2012 server and move an existing database to that server with the use of the BEUtility. Install Backup Exec 2012 on the new server and apply all of the latest hotfixes and service packs. The…

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question