Interview project would be greatly appreciated if you have time. You can create a script or contact Cisco support to get more insights.Īre trying to better understand customer views on social support experience, so your participation in this Third, I suggest you let VPN connects automatically after login. If the remote location can get internal IP, I think VPN is not needed. Since I notice you said “users can log into the network after turning their PC on by typing their domain credentials.” Or you make the network services/devices offline available? Login with domainĪccount will apply group policy. Second, I suspect the remote location is in company’s network. You can set it in the RDP-Tcp Properties dialog box. You can enhance the security of RD Session Host sessions by using Secure Sockets Layer (SSL) Transport Layer Security (TLS 1.0) for server authentication and to encrypt RD Session Oh and I almost forgot this important question, if useres are already on the domain/internet when they turn their PC's on, how would the RDP client know to use the VPN tunnel instead of the internet connection that is already active on the PC.įirst, I would like to RD Session Host sessions use native RDP encryption. If you have any other questions I will certainly try my best to help. Can/is this done at the terminal server, domain controller of Cisco router.Īny help on this matter would be greatly appreciated. Third - Is there a way to make it so all users are required to start the VPN client before the RDP will work (most important because the data is personal). A question here is, is their any benefit in having users login to the domain before starting the VPN? I can only assume that this would not be recommended. This way they can browse network services/devices without being askedįor credentials. They can use the internet but if they browse network devices and try to access any of them they are asked for credentials to do so.Ī side note: Users can also log into the network after turning their PC on by typing "domain name\username" in the username field and then their active directory password. I checked this in networking config and it shows that the user's pc is connected to the company domain. They have only just turned their PC on and have not put in any credentials. Second - Why/how are they able to use RDP to log on to the terminal server with an internal ip (192.168.1.15) without launching the VPN client. This is where I am a bit confused given that I am not heavily versed in terminal services.įirst - In this scenario (not using the VPN client at all), if I'm not mistaken, none of the data traveling back and forth is encrypted, Is this true? Come to find out, every user in the office is actually turning their machine on, and double clicking on the RDP client, logging in and going to work. Into the terminal server and work on their respective applications. From what I was told before I went out there was that users turned their pc on and first clicked on the VPN client, put in their password and establish the tunnel. The user would then double click the RDP client and log The user turns his or her machine on in the morning and at the Windows desktop the user is able to browse the internet and that is about it given that the only 3 other things installed on the pc is an anti-virus software, the Cisco VPN client and the This is where my questions begin. The remote location uses a Cisco firewall/router (cant remember the model) and the main There is a remote location with several users who connect to the main office to the Terminal Server with RDP client. There is MS Windows server 2008r2 Terminal Server. There is a VMware ESXi server with several VM's running various servers. Ill just explain the ones that seem the most important to my issue. There is an MS Windows server 2008r2 DC with Active Directory, Here is a basic rundown of the architecture. I have some questions regarding a company network that I am doing some work on and I was wondering if someone may be of assistance.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |