Windows Server 2008 Network Security and Terminal Services

is by far the most reliable Windows Server, which enhances operating system security and breaks through security innovations, including Network Access Protection, Federated Rights Management, and Read-Only Domain Controller. Provides the highest level of security for your network, data and business.

●Windows Server 2008 helps protect your servers, networks, data, and user accounts from failure or compromise.

●Network Access Protection helps you isolate computers that do not comply with your organization's security policies and provides network restrictions, corrections, and real-time compliance checks.

●Federated Rights Management Services provides a comprehensive information protection platform that provides continuous protection of sensitive data while helping to reduce risk and ensure compliance.

● Read-Only Domain Controller supports the deployment of Active Directory Domain Services while limiting the replication of the entire Active Directory database to better prevent server information from being compromised or stolen.

The previous paragraph is Microsoft's introduction to Windows Server 2008 security, which is one of the basic prerequisites for other features. Under the premise of security, there will be more network applications. In today's era of ubiquitous networks, traditional media single-machine products have become increasingly unable to meet people's needs, and more software vendors have realized that the network brings them. Convenience and challenges, taking Microsoft as an example, whether it is network patch distribution or network-based genuine value-added programs reflect Microsoft's use of the network, and for enterprise users, this is mainly reflected in the terminal services.

Terminal Services in Windows Server can improve the software deployment capabilities of enterprises in a variety of application scenarios and allow for more flexibility in the application and management infrastructure. When a user runs an application on a terminal server, the application is actually executed on the server side, so only the keyboard, mouse, and display information need to be transmitted over the network. Each user can only see his own session, which is managed transparently by the server operating system and is independent of any other client session.

Terminal Services provides the ability to host multiple concurrent client sessions on Windows Server. Standard Windows-based applications run on the terminal server without any modifications, and all standard Windows Server management infrastructure and technologies can be used to manage the client desktop system. In this way, organizations can choose from the rich set of applications and tools available in today's Windows operating system environment.

In the face of such close application, Microsoft will continue to enhance it. In this year's upcoming Longhorn Server, the performance improvement of the terminal server is very gratifying. Users can decide which programs can be accessed remotely. At the same time, users can use Citrix's programs through new remote programs and Terminal Services Gateways. Users can also access the program, configure the program, virtualize and implement secure access at any time. Let's take a look at the charm of Microsoft Terminal Services one by one:

A major improvement in Terminal Services in Longhorn Server is the Terminal Services Gateway, through which users Terminal Services can be accessed from anywhere in the world via a portal on the Internet. All processing is done through a securely encrypted HTTPS channel. If you are familiar with Exchange Server or ISA Server, you will find that this feature is very similar to that used by Outlook 2003 to access a mail server via a virtual private network (VPN). RPC-over-HTTP functionality.

The Terminal Services Gateway can correctly complete network address translation through the firewall. In addition, because the data is transmitted through HTTPS, a protocol that almost everyone uses, this avoids The problem of the inability to penetrate the firewall when using the Remote Desktop Protocol (RDP) for transmission, because the 3389 port used by the Desktop Protocol (RDP) is often blocked on the firewall.

Administrators set different authorization policies for different user groups, so that you can control the permissions of different users to connect to Terminal Services through the gateway machine. With this function, we no longer need to be a user on each Internet. Open the largest software installation permissions.

If terminal services provide the possibility for distributed office work, then the Terminal Services Gateway (Terminal Services Gateway) really makes the software deployed by the enterprise flexible and controllable. Previous 12 Next Read the full story