| View previous topic :: View next topic |
| Author |
Message |
Looxie
Joined: 19 Sep 2006
Posts: 3
Location: Belgium
|
 Posted: Tue Sep 19, 2006 8:16 am
Post subject: Extra Network card for administration only ? |
|
|
Hi,
would it be possible to put an extra network card in the system which can be used by different opperators on the internal (secure) lan to administer the firstspot solution.
I think of using this interface for several people who can add/change userid's groups....., for accessing the internet.
We don't want/cannot use the private interface for this kind of administration.
Regards
_________________
Because we still love IT ! |
|
| Back to top |
|
 |
alan
Forum facilitator
Joined: 26 Sep 2003
Posts: 4435
|
Posted: Tue Sep 19, 2006 10:16 am
Post subject: |
|
|
This might be difficult.
Can you administer via the Public Network Interface (i.e. Internet side) instead?
_________________
~ Patronsoft Limited ~ |
|
| Back to top |
|
|
Looxie
Joined: 19 Sep 2006
Posts: 3
Location: Belgium
|
Posted: Tue Sep 19, 2006 10:53 am
Post subject: Extra Network card for administration only ? |
|
|
No,
we have special admin vlans for this kind of use.
would be nice if we could do it via an extra card and a few static routes for this interface.
_________________
Because we still love IT ! |
|
| Back to top |
|
|
danielillu
Joined: 08 Dec 2005
Posts: 32
Location: Barcelona, Spain
|
Posted: Tue Sep 19, 2006 12:42 pm
Post subject: |
|
|
depending on OS you are using you can create System user accounts (with restricted user policies through gpolice or something like that) for your admins and then, through 3rd network card log into the system via Remote desktop connection (RDP, default port: tcp 3389). in there your admins will see a standard windows desktop and they can work as they where phisically logged in your server.
This works great (up to 2 simultaneous remotely logged users) with windows Server 2003. for more than 2 simultaneous login you must us terminal services, but it costs extra licences.
I haven't tested yet in windows 2000 server.
Using windows XP, remote logged user must be the same as local logged user and only one of them can be working at the same time. It doesn't work if no user is locally logged.
I use this for AP & Firstspot maintenance and configuration from both sides of the network. Using 15 color bits and no "decorations" speed is reasonable from both sides. |
|
| Back to top |
|
|
Looxie
Joined: 19 Sep 2006
Posts: 3
Location: Belgium
|
Posted: Tue Sep 19, 2006 1:13 pm
Post subject: |
|
|
Ok,
thanks, glad someone has done it before.
I'll try it out soon.
Regards
_________________
Because we still love IT ! |
|
| Back to top |
|
|
danielillu
Joined: 08 Dec 2005
Posts: 32
Location: Barcelona, Spain
|
Posted: Tue Sep 19, 2006 7:10 pm
Post subject: |
|
|
for having a bit more security you can change Default Port through windows registry and set to any other port you want.
-----------
Open the registry with regedit and browse to:
HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp
Look for a subkey called PortNumber and change it from the default 3389 to the decimal value of the desired port. To connect on a different port you would enter a colon and the port number after the servername or IP in the RDP connection dialog box.
-------- from http://thelazyadmin.com/index.php?/archives/134-Quick-Tip-Change-Terminal-Server-Port.html |
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
Powered by phpBB © 2001, 2005 phpBB Group
| |
Search
Profile
Log in
Register
