< Windows Server Administration
This lesson covers remote access using Windows Remote Assistance, Remote Desktop Services, and virtual private networks. Activities include using Windows Remote Assistance, Remote Desktop, and Remote Server Administration Tools.
Objectives and Skills
Objectives and skills for the Understanding Server Roles portion of Windows Server Administration Fundamentals certification include:[1]
- Understand remote access: remote assistance; remote administration tools; Remote Desktop Services; licensing; RD Gateway; VPN; application virtualization; multiple ports
Readings
Multimedia
- YouTube: Getting Help with Remote assistance in Windows 7 and Windows 8
- YouTube: Windows Remote Access - 1 of 5 - Remote Desktop (RDP)
- YouTube: Windows Remote Access - 2 of 5 - Remote Assistance Invitations
- YouTube: Windows 7 Remote Administration Tools
- YouTube: Windows Remote Access - 3 of 5 - Terminal Services and RDP
- YouTube: VPN - Virtual Private Networking
Activities
- Review Adding Server Roles and Features. Add Remote Assistance and invite another user to assist you.
- Review Initiate Remote Assistance from a Command Line or a Script. Use the msra /offerra option to initiate remote assistance to another user.
- Review Server Manager. Enable Remote Desktop. Use Windows Firewall to verify that Remote Desktop is enabled. Use another computer to access the server remotely using Remote Desktop.
- Review Install or Uninstall Roles, Role Services, or Features. Add a role or feature with the gui and one with PowerShell
- Review Managing a Server Core installation: Overview. Remotely administer a Server Core installation.
- Review Remote Desktop Services. Click on the "Supported configurations for Remote Desktop Services in Windows Server 2016 and discuss some of the best practices and architectures.
- Review Microsoft Remote Desktop Clients. Install Remote Desktop Client on your Android or iOS tablet or smartphone and use the app to connect to the Remote Desktop server.
- Review License your RDS deployment with client access licenses (CALs). Use your preferred software license vendor to determine the cost per license for RDP CALs.
- Review Microsoft Application Virtualization.
- Review Deploy Always On VPN. Configure and test a an Always on VPN server.
- Review Configure a Remote Access VPN Server. Configure the number of ports available for each VPN protocol.
Lesson Summary
- Windows Remote Assistance allows a user to temporarily view or control a remote Windows computer over a network or the Internet to resolve issues without directly touching the unit.[2]
- Windows Remote Assistance is based on the Remote Desktop Protocol.[3]
- Windows Remote Assistance is installed by default on Windows clients, but must be added manually on Windows Server 2008 R2 servers using the Add Features Wizard in Server Manager.[4]
- Remote assistance sessions may be initiated using the Windows Remote Assistance application or by using the msra.exe command line interface.[5]
- Remote desktop refers to a software or operating system feature that allows a personal computer's desktop environment to be run remotely on one system while being displayed on a separate client device.[6]
- Common remote desktop approaches include open source VNC and Microsoft's RDP.[7] Of the two, RDP offers better performance.[8]
- Remote Desktop connections are disabled by default, but may be enabled using System Properties.[9]
- Remote administration refers to any method of controlling a computer from a remote location.[10]
- Windows business clients and server editions may be remotely administered using the Microsoft Management Console, the Windows Registry Editor, and various command-line utilities, in addition to Remote Desktop connections.[11]
- Remote Server Administration Tools for Windows 7 enables IT administrators to manage roles and features that are installed on remote computers that are running Windows Server 2008 R2.[12]
- Remote Desktop Services allows a user to access applications and data on a remote computer over a network, using the Remote Desktop Protocol (RDP).[13]
- Remote Desktop clients may be full-fledged computers, thin clients, tablets or smartphones.[14]
- In the client versions of Windows, Remote Desktop supports only one logged in user at a time, whereas in the server operating systems, concurrent remote sessions are allowed.[15]
- With Remote Desktop Services, only the user interface of an application is presented to the client, while application execution takes place on the server. This is in contrast to application streaming systems like Microsoft Application Virtualization, in which the applications are streamed to the client and executed on the client machine.[16]
- The Remote Desktop service listens on TCP port 3389, and supports low, medium or high encryption.[17]
- Remote Desktop Licensing enables a server to manage Remote Desktop Services client access licenses (RDS CALs) that are required for each device or user to connect to a Remote Desktop Session Host server. RDS CALs are managed using the Remote Desktop Licensing Manager application.[18]
- The Remote Desktop Gateway component, also known as RD Gateway, tunnels Remote Desktop Protocol sessions through an HTTPS connection, thus encapsulating the session with Transport Layer Security (TLS).[19]
- A virtual private network (VPN) extends a private network across a public network, such as the Internet, and enables a computer to send and receive data as if it were directly connected to the private network.[20]
- VPNs provide security by the use of tunneling protocols and through security procedures such as authentication and encryption.[21]
- Windows Server 2008 VPN supports the following tunneling protocols: PPTP, L2TP, and SSTP.[22]
Key Terms
- Apple Remote Desktop (ARD)
- A Macintosh application produced by Apple Inc., that allows users to remotely control or monitor other Macintosh computers over a network.[25]
- application virtualization
- A software technology that encapsulates application software from the underlying operating system on which it is executed.[26]
- Challenge-Handshake Authentication Protocol (CHAP)
- An authentication protocol that uses an algorithm to generate a password challenge based on a known password without ever transmitting the actual password across the network, making it more secure than PAP.[27]
- Citrix XenApp
- An application virtualization product that allows users to connect to their corporate applications from a wide range of computer systems and mobile devices.[28]
- Extensible Authentication Protocol (EAP)
- An authentication framework providing for the transport and usage of keying material and parameters and supporting a wide variety of authentication methods.[29]
- Generic Routing Encapsulation (GRE)
- A tunneling protocol developed by Cisco Systems that can encapsulate a wide variety of network layer protocols inside virtual point-to-point links over an Internet Protocol internetwork and identified as IP protocol type 47.[30]
- Layer 2 Tunneling Protocol (L2TP)
- A tunneling protocol used to support virtual private networks (VPNs).[31]
- MS-CHAP
- The Microsoft version of the Challenge-Handshake Authentication Protocol, CHAP.[32]
- NAT traversal
- A general term for techniques that establish and maintain Internet protocol connections traversing network address translation (NAT) gateways.[33]
- Network Address Translation (NAT)
- The process of modifying IP address information in IPv4 headers while in transit across a traffic routing device.[34]
- Password Authentication Protocol (PAP)
- An authentication protocol that uses a clear-text password.[35]
- Peer Name Resolution Protocol (PNRP)
- A peer-to-peer protocol designed by Microsoft that enables dynamic name publication and resolution, and requires IPv6.[36]
- Point-to-Point Tunneling Protocol (PPTP)
- A method for implementing virtual private networks using a TCP connection on port 1723 and a GRE tunnel to encapsulate PPP packets.[37]
- RemoteApp
- A special mode of Remote Desktop Services where the user interface for a remote application is rendered in a window on the local desktop, and is managed like any other window for local applications.[38]
- RemoteFX
- A set of Microsoft technologies that enhance the visual experience of the Remote Desktop Protocol (RDP).[39]
- Secure Socket Tunneling Protocol (SSTP)
- A form of VPN tunnel that provides a mechanism to transport PPP or L2TP traffic through an SSL 3.0 channel, allowing SSTP to pass through most firewalls and proxy servers.[40]
- Terminal Services
- The previous name for Microsoft's Remote Desktop Services.[41]
- tunneling protocol
- A network protocol (the delivery protocol) used to encapsulate a different payload protocol to carry a payload over an incompatible delivery-network or provide a secure path through an untrusted network.[42]
- Virtual Network Computing (VNC)
- An open source graphical desktop sharing system that uses the Remote Frame Buffer protocol (RFB) to remotely control another computer.[43]
- Wake-on-LAN
- An Ethernet computer networking standard that allows a computer to be turned on or awakened by a network message.[44]
Review Questions
Click on a question to see the answer.
-
Windows Remote Assistance allows a user to temporarily _____ to resolve issues without directly touching the unit.Windows Remote Assistance allows a user to temporarily view or control a remote Windows computer over a network or the Internet to resolve issues without directly touching the unit.
-
Windows Remote Assistance is based on the _____ protocol.Windows Remote Assistance is based on the Remote Desktop Protocol.
-
Windows Remote Assistance is installed by default on _____, but must be added manually on _____ using _____.Windows Remote Assistance is installed by default on Windows clients, but must be added manually on Windows Server 2008 R2 servers using the Add Features Wizard in Server Manager.
-
Remote assistance sessions may be initiated using the Windows Remote Assistance application or by using the _____ command line interface.Remote assistance sessions may be initiated using the Windows Remote Assistance application or by using the msra.exe command line interface.
-
Remote desktop refers to a software or operating system feature that allows _____.Remote desktop refers to a software or operating system feature that allows a personal computer's desktop environment to be run remotely on one system while being displayed on a separate client device.
-
Common remote desktop approaches include open source _____ and Microsoft's _____. Of the two, _____ offers better performance.Common remote desktop approaches include open source VNC and Microsoft's RDP. Of the two, RDP offers better performance.
-
Remote Desktop connections are disabled by default, but may be enabled using _____.Remote Desktop connections are disabled by default, but may be enabled using System Properties.
-
Remote administration refers to _____.Remote administration refers to any method of controlling a computer from a remote location.
-
Windows business clients and server editions may be remotely administered using _____, _____, and _____, in addition to _____ connections.Windows business clients and server editions may be remotely administered using the Microsoft Management Console, the Windows Registry Editor, and various command-line utilities, in addition to Remote Desktop connections.
-
Remote Server Administration Tools for Windows 7 enables IT administrators to _____.Remote Server Administration Tools for Windows 7 enables IT administrators to manage roles and features that are installed on remote computers that are running Windows Server 2008 R2.
-
Remote Desktop Services allows a user to _____, using the _____ protocol.Remote Desktop Services allows a user to access applications and data on a remote computer over a network, using the Remote Desktop Protocol (RDP).
-
Remote Desktop clients may be _____, _____, _____ or _____.Remote Desktop clients may be full-fledged computers, thin clients, tablets or smartphones.
-
In the client versions of Windows, Remote Desktop supports _____ at a time, whereas in the server operating systems, _____ remote sessions are allowed.In the client versions of Windows, Remote Desktop supports only one logged in user at a time, whereas in the server operating systems, concurrent remote sessions are allowed.
-
With Remote Desktop Services, only _____ is presented to the client, while application execution takes place _____. This is in contrast to application streaming systems like _____, in which the applications are streamed to the client and _____.With Remote Desktop Services, only the user interface of an application is presented to the client, while application execution takes place on the server. This is in contrast to application streaming systems like Microsoft Application Virtualization, in which the applications are streamed to the client and executed on the client machine.
-
The Remote Desktop service listens on _____ port _____, and supports _____ encryption.The Remote Desktop service listens on TCP port 3389, and supports low, medium or high encryption.
-
Remote Desktop Licensing enables a server to manage _____ that are required for _____ to connect to a Remote Desktop Session Host server. RDS CALs are managed using the _____ application.Remote Desktop Licensing enables a server to manage Remote Desktop Services client access licenses (RDS CALs) that are required for each device or user to connect to a Remote Desktop Session Host server. RDS CALs are managed using the Remote Desktop Licensing Manager application.
-
The Remote Desktop Gateway component, also known as RD Gateway, tunnels Remote Desktop Protocol sessions through _____, thus encapsulating the session with _____.The Remote Desktop Gateway component, also known as RD Gateway, tunnels Remote Desktop Protocol sessions through an HTTPS connection, thus encapsulating the session with Transport Layer Security (TLS).
-
A virtual private network (VPN) _____, and enables a computer to _____.A virtual private network (VPN) extends a private network across a public network, such as the Internet, and enables a computer to send and receive data as if it were directly connected to the private network.
-
VPNs provide security by the use of _____ and through security procedures such as _____ and _____.VPNs provide security by the use of tunneling protocols and through security procedures such as authentication and encryption.
-
Windows Server 2008 VPN supports the following tunneling protocols: _____, _____, and _____.Windows Server 2008 VPN supports the following tunneling protocols: PPTP, L2TP, and SSTP.
-
Windows Server 2008 VPN supports the following authentication methods: _____, _____, _____, and _____. _____ implemented with public key certificates is considered to be the most secure.Windows Server 2008 VPN supports the following authentication methods: PAP, CHAP, MS-CHAP v2, and EAP. EAP implemented with public key certificates is considered to be the most secure.
Flashcards
See Also
References
- ↑ Microsoft: Windows Server Administration Fundamentals Exam Details
- ↑ Wikipedia: Windows Remote Assistance
- ↑ Wikipedia: Windows Remote Assistance
- ↑ Wikipedia: Windows Remote Assistance
- ↑ Wikipedia: Windows Remote Assistance
- ↑ Wikipedia: Remote desktop software
- ↑ Wikipedia: Remote desktop software
- ↑ Wikipedia: Virtual Network Computing
- ↑ Microsoft: Remote Desktop Connection: frequently asked questions
- ↑ Wikipedia: Remote administration
- ↑ Wikipedia: Remote administration
- ↑ Wikipedia: Remote administration
- ↑ Wikipedia: Remote Desktop Services
- ↑ Wikipedia: Remote Desktop Services
- ↑ Wikipedia: Remote Desktop Services
- ↑ Wikipedia: Remote Desktop Services
- ↑ Wikipedia: Remote Desktop Services
- ↑ Wikipedia: Remote Desktop Services
- ↑ Wikipedia: Remote Desktop Services
- ↑ Wikipedia: Virtual private network
- ↑ Wikipedia: Virtual private network
- ↑ TechNet: VPN Tunneling Protocols
- ↑ TechNet: Authentication Methods
- ↑ Wikipedia: Point-to-Point Tunneling Protocol
- ↑ Wikipedia: Apple Remote Desktop
- ↑ Wikipedia: Application virtualization
- ↑ Wikipedia: Challenge-Handshake Authentication Protocol
- ↑ Wikipedia: Citrix XenApp
- ↑ Wikipedia: Extensible Authentication Protocol
- ↑ Wikipedia: Generic Routing Encapsulation
- ↑ Wikipedia: Layer 2 Tunneling Protocol
- ↑ Wikipedia: MS-CHAP
- ↑ Wikipedia: NAT traversal
- ↑ Wikipedia: Network address translation
- ↑ Wikipedia: Password authentication protocol
- ↑ Wikipedia: Peer Name Resolution Protocol
- ↑ Wikipedia: Point-to-Point Tunneling Protocol
- ↑ Wikipedia: Remote Desktop Services
- ↑ Wikipedia: RemoteFX
- ↑ Wikipedia: Secure Socket Tunneling Protocol
- ↑ Wikipedia: Remote Desktop Services
- ↑ Wikipedia: Tunneling protocol
- ↑ Wikipedia: Virtual Network Computing
- ↑ Wikipedia: Wake-on-LAN
This article is issued from Wikiversity. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.