Jump to content



Photo

  • Please log in to reply
7 replies to this topic

#1 BillDozer357

BillDozer357

    brained his damage.

  • Joined: 06-October 09

Posted 04 November 2012 - 02:54

I was wondering if anyone could shed some light on the best way to configure secure access to a hosted webserver for administration (RDP, file transfers, etc.). Would running AD/NPS for PPTP(PEAP) be the way to go or are there better options?


#2 +BudMan

BudMan

    Neowinian Senior

  • Tech Issues Solved: 74
  • Joined: 04-July 02
  • Location: Schaumburg, IL
  • OS: Win7, Vista, 2k3, 2k8, XP, Linux, FreeBSD, OSX, etc. etc.

Posted 04 November 2012 - 13:25

So your hosted webserver is a member of your AD? Or is the DC in a AD?

I would just use ssh, public key auth is pretty freaking secure. And I can do anything I want via a ssh connection to that server. Without saying this is a no brainer if not using windows as your OS. A bit harder to get ssh up and running on windows box.

#3 OP BillDozer357

BillDozer357

    brained his damage.

  • Joined: 06-October 09

Posted 04 November 2012 - 15:04

So your hosted webserver is a member of your AD? Or is the DC in a AD?


Sorry, I should have specified. What I had in mind was, the webserver(server 2008 r2 std) running it's own domain with nothing else as a member of that domain, running AD purely to authenticate incoming PPTP VPN connections.

I can't believe I didn't think of SSH though. That's what I get for trying to admin while running on no sleep.

Thanks, Bud.

#4 +BudMan

BudMan

    Neowinian Senior

  • Tech Issues Solved: 74
  • Joined: 04-July 02
  • Location: Schaumburg, IL
  • OS: Win7, Vista, 2k3, 2k8, XP, Linux, FreeBSD, OSX, etc. etc.

Posted 04 November 2012 - 15:07

"running AD purely to authenticate incoming PPTP VPN connections."

That is a bit overkill ;)

#5 n_K

n_K

    Neowinian Senior

  • Tech Issues Solved: 3
  • Joined: 19-March 06
  • Location: here.
  • OS: FreeDOS
  • Phone: Nokia 3315

Posted 04 November 2012 - 15:23

I've got a VPN server running on server 03 R2 (Routing and Remote Access) without AD running and it works fine, local users can connect to it.

#6 ChuckFinley

ChuckFinley

    Neowinian Senior

  • Joined: 14-May 03

Posted 04 November 2012 - 18:41

SSH Wouldn't work on Windows OS really.

#7 +BudMan

BudMan

    Neowinian Senior

  • Tech Issues Solved: 74
  • Joined: 04-July 02
  • Location: Schaumburg, IL
  • OS: Win7, Vista, 2k3, 2k8, XP, Linux, FreeBSD, OSX, etc. etc.

Posted 05 November 2012 - 03:54

Sure it would - couple of ways to run ssh on windows.

Here is version - not free http://www.bitvise.c...server-download for commercial, put FREE for personal.

here if free version - http://mobassh.mobatek.net/

Here is openssh port to windows
http://sshwindows.sourceforge.net/

etc.. etc.. etc.. Or just run in VM for that matter, or run it inside cygwin. Or just change to linux/bsd, if your wanting to serve up HTTP, wtf you using windows for in the first place ;)

#8 OP BillDozer357

BillDozer357

    brained his damage.

  • Joined: 06-October 09

Posted 06 November 2012 - 03:42

"running AD purely to authenticate incoming PPTP VPN connections."

That is a bit overkill ;)


Nah. :D



Click here to login or here to register to remove this ad, it's free!