Webserver running Active Directory Domain Services/NPS for VPN access?

By BillDozer357
in Smart Home, Network & Security

 Share

Recommended Posts

Enthusiast

BillDozer357

Posted
Posted

I was wondering if anyone could shed some light on the best way to configure secure access to a hosted webserver for administration (RDP, file transfers, etc.). Would running AD/NPS for PPTP(PEAP) be the way to go or are there better options?

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

So your hosted webserver is a member of your AD? Or is the DC in a AD?

I would just use ssh, public key auth is pretty freaking secure. And I can do anything I want via a ssh connection to that server. Without saying this is a no brainer if not using windows as your OS. A bit harder to get ssh up and running on windows box.

Enthusiast

BillDozer357

Posted
  • Author
Posted

So your hosted webserver is a member of your AD? Or is the DC in a AD?

Sorry, I should have specified. What I had in mind was, the webserver(server 2008 r2 std) running it's own domain with nothing else as a member of that domain, running AD purely to authenticate incoming PPTP VPN connections.

I can't believe I didn't think of SSH though. That's what I get for trying to admin while running on no sleep.

Thanks, Bud.

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

Sure it would - couple of ways to run ssh on windows.

Here is version - not free http://www.bitvise.com/ssh-server-download for commercial, put FREE for personal.

here if free version - http://mobassh.mobatek.net/

Here is openssh port to windows

http://sshwindows.sourceforge.net/

etc.. etc.. etc.. Or just run in VM for that matter, or run it inside cygwin. Or just change to linux/bsd, if your wanting to serve up HTTP, wtf you using windows for in the first place ;)

This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.

  • Posts

    • The official Funny Pictures thread

      By +Edouard · Posted

    • Politically funny images of the World

      By +Edouard · Posted

    • Free Software Foundation Europe pushes EU to force Google to allow AI uninstalls on Android

      By zikalify · Posted

      Free Software Foundation Europe pushes EU to force Google to allow AI uninstalls on Android by Paul Hill Credit: Pexels Users should be able to fully uninstall AI-based features from Android devices and be able to access interoperability functions, free from Google’s verification requirements, the European Commission has heard as part of an Android interoperability consultation under the Digital Markets Act. These measures were proposed by the Free Software Foundation Europe (FSFE) last week when it submitted its documentation. The FSFE noted that Google had started silently installing AI models without telling users. It noted that the EU’s DMA requires companies like Google to allow users to uninstall pre-loaded software from their devices, but in the case of the AI models Google is installing, they reinstall if you delete them, contravening the DMA. To get Google back under control, the FSFE has told the European Commission that there needs to be improvements within the Android Open Source Project (AOSP). First, it said that users should be able to fully remove pre-loaded AI components from their devices, with companies being prohibited from silently reinstalling or reactivating them. Second, access to Android interoperability features should not be contingent on registration, authorization, or contractual relationships with Google. This pertains to Google’s attempt to force developers to register with Google, even to publish apps to alternative app stores like F-Droid. Discussing its submission, Lucas Lasota, FSFE Legal Programme Manager, said: Google is planning to roll out its Android Developer Certification in September 2026. This will force every Android app developer to register with Google before their software can be installed on certified Android devices, but it should affect those who have removed Google Apps from their device. The program is controversial because it entails the signing of contracts and payment of account fees to Google, as well as the handing over of the identities of developers. It said: The FSFE said that if the Commission’s draft measures remain unchanged, then Google will be allowed to make developers verify their identity. The FSFE believes that asking developers to register is contrary to the text and spirit of the law. In summary, the FSFE has told the Commission that no developer should need a Google account, a Play Store presence, or any agreement with Google to access Android’s interoperability features.
    • Microsoft confirms Windows 11 26H2 to finally get one of the most requested features

      By KsenOug · Posted

      You could disable this "functionality/feature/whatever" with 2 registry keys, ages ago.
    • Microsoft releases major feature updates for stock Windows 11 apps

      By matthiew · Posted

      My Photos app is version 2026.11050.1001.0 and it remembers the window size and position. My Snipping Tool is version 11.2602.49.0 and it can capture the taskbar.

  • Recent Achievements

    • Conversation Starter
      sumytbe earned a badge
      Conversation Starter
    • One Year In
      B4dM1k3 earned a badge
      One Year In
    • One Year In
      DarkWun earned a badge
      One Year In
    • Dedicated
      Almohandis earned a badge
      Dedicated
    • Dedicated
      JuvenileDelinquent earned a badge
      Dedicated

  • Popular Contributors

    1. 1
      +primortal
      519
    2. 2
      +Edouard
      184
    3. 3
      PsYcHoKiLLa
      87
    4. 4
      Michael Scrip
      81
    5. 5
      Steven P.
      72
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!