Announcement

Collapse
No announcement yet.

Limitting access to terminal server

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Limitting access to terminal server

    Hello!

    I've set up terminal server, and secured it with certificate. Used security layer is SSL.

    Now I wonder, if it's possible to totally deny connection from those, who don't have a valid certificate in their client computer? Because if I connect to terminal server with client that don't have a certificate, I'm asked to install that server certificate, and then I just install it and get connected.

    What I want is, that when I connect with client wich don't have a certificate, connection is just denied. So I would need to get that certificate somehow to even get login screen...

    Terminal Server is going to be member of Active Directory, but clients don't.

    Is that possible?

    t. Hassu

  • #2
    Re: Limitting access to terminal server

    This is a tricky question.
    The certificate for Windows 2003 TS SP1 allow only the client to authenticate the server.
    You can create IPSEC filter, and then request authentication via certificate etc - but I recommended
    To use firewall like ISA 2006 for this task.
    Best Regards,

    Yuval Sinay

    LinkedIn: https://www.linkedin.com/in/yuval14, Blog: http://blogs.microsoft.co.il/blogs/yuval14

    Comment


    • #3
      Re: Limitting access to terminal server

      Ok, thanks.

      That's what I was afraid of, becouse I couldn't find any
      HOW-To's about that..

      Need to use that firewall, and maybe some 3rd party software
      to limit access to that TS.

      t. Hassu

      Comment


      • #4
        Re: Limitting access to terminal server

        Free tip:

        http://www.petri.com/block_ping_traffic_with_ipsec.htm
        Best Regards,

        Yuval Sinay

        LinkedIn: https://www.linkedin.com/in/yuval14, Blog: http://blogs.microsoft.co.il/blogs/yuval14

        Comment

        Working...
        X