In the LAN working environment, the network administrator often manages the server system remotely through remote desktop mode; however, when we try to remotely manage the Windows Server 2008 server system, it is not so smooth, even Unable to manage remotely. This situation occurs, mainly because the security features of Windows Server 2008 system are more enhanced than before, which makes the remote management path a lot more security levels; in order to make the remote management of Windows Server 2008 system smoother, we need to prescribe the right medicine and eliminate remote management. Various safety levels on the road.
Excluding network discovery levels
Windows Server 2008 system has added network discovery function compared with ordinary server system. Once this function is not enabled, then any user cannot pass the remote desktop. Way to access the Windows Server 2008 system. In order to smoothly manage the Windows Server 2008 server system remotely, we need to enable the network discovery function of the corresponding system. The following are the specific steps to enable the network discovery function:
First open the Windows Server 2008 system desktop. Start the menu, click the "Settings" /"Control Panel" command one by one, in the pop-up system control panel window, double-click the Network and Sharing Center icon to open the Network and Sharing Center management window;
Figure 1 Enable Network Discovery
Secondly, find the sharing and discovery settings from the Network and Sharing Center management window, then expand the Network Discovery Settings option, open the settings area shown in Figure 1, and select the "Enable Network Discovery" option. Then click the "Apply" button, so that the network discovery function of Windows Server 2008 system will not hinder us to remotely manage the local server system.
Excluding Firewall Restricted Levels
The Windows Server 2008 system has a significant enhancement in its own firewall, and the enhanced firewall program will remotely connect to the remote desktop connection. Restriction, if you do not cancel this restriction, then we can not remotely manage the Windows Server 2008 server system; when troubleshooting the firewall limit level, we can follow the steps below:
Click Windows first In the Server 2008 system desktop, the "Start", "Settings", "Control Panel" commands, open the corresponding system's control panel window, double-click the Windows Firewall icon, and then click "Enable or Close" in the left display area of the interface. Windows Firewall link, open the Windows basic configuration window of the local server system;
Figure 2 Enable Remote Desktop Service
Second click on the "Exceptions" tab in the basic configuration window to open Figure 2 shows the option settings page, check whether the "Remote Desktop" option is selected, once sent When this option has not been selected, it means that the Windows Server 2008 system comes with a firewall to limit the remote desktop connection; in order to cancel this restriction, we must select the "Remote Desktop" option here, and click "OK" The button saves the above settings, so that any user remotely connected to the server system will not be blocked by the firewall.
Of course, in order to remotely manage Windows Server 2008 system, we also need to set the group policy parameters of the corresponding system, so that the system has its own firewall to allow users to inbound remote management; When operating, we can first click the "Start", "Run" command, execute the "gpedit.msc" command in the pop-up system run text box, open the group policy editing window of the corresponding system; in the left side of the window In the pane, expand the Computer Configuration, Administrative Templates, Network, Network Connections, Windows Firewall group policy subkeys, and include two options under the target subkey if the Windows Server 2008 server The system is in the domain working environment, then we should double-click the "Windows Firewall: Allow Inbound Remote Management Exception" under the "Domain Profile" option, select the "Enabled" option in the subsequent interface, if the Windows Server 2008 server system is at work In the group environment, then we should double-click the "Standard Profile" option under "Windows Firewall" : Allow inbound remote management exceptions, and then enable this policy option, so that we can actually remotely manage Windows Server 2008 systems.
Excluding Login Permissions Levels
Even though we have enabled the Remote Desktop feature of Windows Server 2008, by default, the system does not allow any users to be local to the server without authorization. The system is remotely managed, so when we try to use the existing account of the server system to remotely log in to the Windows Server 2008 system, it is found that the login cannot be successful. In order to ensure that the remote login operation is smooth, we can authorize the target login account and have the right to remotely manage the server system through remote desktop connection. Here are the specific setup steps:
First in Windows In the Server 2008 system desktop, click the Start /Programs /Administrative Tools /Server Manager command. In the Server Manager console window that pops up, click Server Management in the left display area. "Options", in the right area of the corresponding option, click the "Change System Properties" button at the "Server Summary" setting item to open the property settings dialog box of the Windows Server 2008 system;
Click the "Remote" tab in the property settings dialog and select the "Allow only computers running remote desktop with network level authentication" option in the corresponding remote tab page, and click "Select User" under the option. " button, open the settings window shown in Figure 3;
Figure 3 Add account permissions
Then check the settings Whether there is a specific remote management account in the user account list box of the window. If it is found that the account does not exist yet, we just click the “Add” button here, and the target user account will be selected from the account selection dialog box that appears later. Select and import it, and finally click the "OK" button to return, so that we can always log in to the Windows Server 2008 system through the remote desktop connection and then remotely manage the system.
Excluding Port Restricted Levels
Once the Remote Desktop feature of Windows Server 2008 is enabled, the server system is equivalent to being opened with a user with legal rights. The server can be managed remotely, and illegal users without permission can also find a way to attack the server through this door. In order to ensure the security of the server system, many network administrators often change the connection port number of the remote desktop from the default 3389 to other unfamiliar numbers. In the future, any user must know the connection port number of the remote desktop to be able to communicate with the server. The system successfully establishes a remote desktop connection; therefore, when we encounter a failure to connect to the Windows Server 2008 server system through Remote Desktop, it is necessary to carefully check whether the remote desktop connection port number in the corresponding server system has been modified, if it has been changed. We can follow the steps below to view the new remote port number, and then attach the new port number to the remote connection host later:
First log in to the Windows Server 2008 system with super privileges, click the button In the system startup dialog box, enter the string command "regedit" in the pop-up system running dialog box, and click the "OK" button to open the system registry editing window;
Secondly, position the mouse on the left side of the editing window. On the HKEY_LOCAL_MACHINE branch option in the domain, click the YSTEM\\CurrentControlSet\\Control\\TerminalServer\\Wds\
dpwd\\Tds\\tcp registry subkey under the branch, and display the area on the right side of the corresponding tcp registry subkey. Byte key value PortNumber;
Figure 4 View remote connection port number
Then double-click the target double-byte key value with the mouse to open the setting dialog box shown in Figure 4, in the dialog In the "Value Data" text box of the box, we can see the new remote desktop connection port number. For example, the remote desktop connection port number viewed here is assumed to be "2008", then we must add " The :2008" suffix can be successfully connected to the target server system.
T100 G11 After removing 1 memory, the power-on self-test will report an error, prompting memory size
Using windowsNT to set up a LAN, the method has long been mastered by many people. But to establish
First, open IIS Manager Second, select the website you want to set Click Proper
Usually iis"http 500 Internal Server Error" is "Server Application Error" Server
Windows 2003 build Apache PHP MySQL environment experience sharing
Ten rules to kill IIS server performance
Server rent and hosting price disparity How to weigh the pros and cons?
Htaccess conversion httpd.ini method
10 steps to protect IIS server security
Server MYSQL CPU usage is too high solution
Improve network service security Anonymous FTP security settings
ISA has a "routing (chain) failure" problem prompt solution
What are the main indicators of the purchase server?
How to set up QOS based on Windows policy? Setting up Windows policy-based QOS tutorial
Win 8 prompts "Registry editing has been disabled by the administrator" What to do?
Microsoft solves Windows Vista memory overflow problem
Windows 8 Getting Started Tutorial TV and Video Usage
How does Windows Server 2008 change the server name and administrator password?
Five ways to solve Win10 preview 10159 upgrade failure
Windows7 system restores the default settings of the firewall (graphic tutorial)