-2

The basic idea is simple: allow Remote Desktop connections over the Internet.

However: By default, any client can connect to the RDP host. I'd like to restrict that. (Just so you know, filtering certain IP addresses is not an option here.)

I know, with RDS, the host needs a certificate. Is there a way, the client also needs to have a particular certificate installed to be able to connect? Or is there any other solution to this problem?

marsze
  • 467
  • 2
  • 6
  • 15
  • 2
    Have you looked up RDS Gateway Services yet?? It does what you're asking. – Chris S May 12 '14 at 13:47
  • Thanks for the clue, I'll look it up and keep you posted. – marsze May 12 '14 at 13:54
  • I don't think this is what I'm looking for. If I got it right, you basically just authenticate with credentials at the gateway, so still, connecting would be possible from any host. – marsze May 12 '14 at 14:12
  • 3
    What exactly are you trying to do? I don't understand. Are you trying to limit the people who can login to the host? (so UserA has permissions, UserB has not?) – MichelZ May 12 '14 at 14:14
  • 1
    @marsze Um, no. RDS GW does a fair amount more than that... – Chris S May 12 '14 at 14:20
  • @MichelZ Limit who is allowed to connect, but not on a user basis (username/password etc.) but on a client machine basis. – marsze May 13 '14 at 06:20
  • 1
    Sorry, this is not possible. You cannot limit machines. (other than blocking IP's) – MichelZ May 13 '14 at 10:48

1 Answers1

0

If you want to limit access to specific machines, the easiest method to do this would be to require those machines to establish a VPN of some sort.

If the client machines are on the Domain you may want to look at DirectAccess as a solution.

Zoredache
  • 130,897
  • 41
  • 276
  • 420