Beruflich Dokumente
Kultur Dokumente
Allow clients to connect through any port, click Allow connections through any
port.
Click OK to close the Properties dialog box for the TS RAP.
SSL Bridging
Begin by clicking on the Add RemoteApp Programs link in the Actions panel
located in the top right hand corner of the TS RemoteApp Manager screen. This
will display the RemoteApp wizard containing a list of currently installed
applications. One or more applications may be selected from the list before
pressing the Next button:
Select the appropriate application from the list and click on the Properties...
button to open the RemoteApp Properties dialog. Within this dialog, make sure
that the RemoteApp is available through TS Web Access box is checked.
Click OK to close the RemoteApp Properties dialog and then click Next in the
wizard to proceed to the Review Settings screen and click Finish to complete the
configuration.
Important
The server name must match what is
specified in the (SSL) certificate for the TS
Gateway server
require pre-authentication:i:1
IIS Settings
On the TS Web server, start Internet Information Services (IIS) Manager.
In the left pane, expand the server name, expand Sites, expand Default Web
Site, and then click TS.
In the middle pane, double-click Application Settings.
Configure the default TS Gateway server, double-click DefaultTSGateway, enter
the fully qualified domain name of the server in the Value box
(TSGateway.company.com), and then click OK.
To specify the TS Gateway authentication method, double-click
GatewayCredentialsSource, type the number that corresponds to the desired
authentication method in the Value box, and then click OK. The possible values
include:
1 = Smart card
To configure whether the Remote Desktop tab appears on the TS Web Access
page, double-click ShowDesktops. In the Value box, type true to show the
Remote Desktop tab, or type false to hide the Remote Desktop tab. When you are
finished, click OK.
To configure default device and resource redirection settings, double-click the
setting that you want to modify (xClipboard, xDriveRedirection, xPnPRedirection,
xPortRedirection, or xPrinterRedirection). In the Value box, type true to enable
the redirection setting by default, or type false to disable the redirection setting
by default, and then click OK.
Save desktops.aspx
This is the TS Gateway setup
ISA Server 2006 Setup
You need 2 rules in the following order to allow TS Gateway web access through
using RSA
Click the Start menu and select Run. Type MMC and press enter. In the File menu
choose "Add/Remove Snap-in".
Click Add, then double-click Certificates, choose Computer Account, then Finish.
Click "Close" and then "OK". Expand the Certificates node, then expand the
Personal node beneath it.
Right click the "personal" folder and select all "tasks>Import"
Find the .pfx file you saved previously and import the certificate and private key
into the MMC
Copy and paste the following script into a text editor such as Notepad. On the ISA
Server, save the file to the C:\ directory as DisableHttpOnlyAuthCookies.vbs.
You can obtain the script from:
http://technet.microsoft.com/en-us/library/cc731249.aspx
From a command prompt, run the following command from the C:\ directory:
cscript DisableHttpOnlyAuthCookies.vbs /WebListener:OTP /Value:False
Keep running the script until you see the following output:
Give the Web Listener a unique name In the next window of the Wizard select
Require SSL secured connections with
clients.
On the Authentication Settings page you After the listener is created make sure the
have a number of options. Select the HTML Require all users to authenticate option
Form Authentication option from the isn’t selected under Advanced
drop down list Authentication Options
To create the Web Publishing Rule, open the ISA firewall console, expand the
array name and click the Firewall Policy node. Click the Tasks tab in the Task
Pane and click the Publish Web Sites
Enter a name for the rule to publish the TS Allow this Rule
Virtual directory
Publish a single Web site or load balancer Use SSL to connect to the published Web
server or server farm
To create the Web Publishing Rule, open the ISA firewall console, expand the
array name and click the Firewall Policy node. Click the Tasks tab in the Task
Pane and click the Publish Web Sites
Enter a name for the rule to publish the TS
Virtual directory
Publish a single Web site or load balancer Use SSL to connect to the published Web
server or server farm