Articles & Tutorials

Articles covering how to properly secure and lockdown Windows Terminal Services.

Articles & Tutorials / Security

Enable Single Sign-On (SSO) for Windows Server 2008 Terminal Services: Date - Feb 13, 2008; Author - Robert J. Shimonski; How to implement Single Sign-On with the Terminal Services role.
How To: Install and Configure Citrix Web Interface 4.6 and Citrix Secure Gateway on the same server (Part 2): Date - Oct 17, 2007; Author - Patrick Rouse; How to install and configure Citrix Web Interface 4.6 and Citrix Secure Gateway on the same server.
Locking Down Windows Terminal Services: Date - May 30, 2007; Author - Patrick Rouse; Some of the many methods that can be used to lock down Windows Terminal Services.
Changes to Terminal Service Security Related Group Policy Settings in Windows Vista and Longhorn Server: Date - May 16, 2007; Author - Brien M. Posey; The group policy object settings that are related to Terminal Service security in Windows Vista and Longhorn Server.
Securing Access to your Applications: Date - Dec 13, 2006; Author - Wilco van Bragt; How access to your applications can be secured within a Terminal Server infrastructure.
An Overview of Longhorn Server’s Terminal Service Gateway (Part 5): Date - Sep 27, 2006; Author - Brien M. Posey; This article concludes the series by demonstrating how to create resource groups and resource access policies that control user access to resource groups.
An Overview of Longhorn Server’s Terminal Service Gateway (Part 4): Date - Sep 13, 2006; Author - Brien M. Posey; In this article, I will explain how to configure IIS and how to create a Connection Authorization Policy.
An Overview of Longhorn Server’s Terminal Service Gateway (Part 3): Date - Aug 31, 2006; Author - Brien M. Posey; In Part 2 of this article series, I showed you how to create an enterprise certificate authority that could be used to issue SSL certificates to your Terminal Service gateway. In this article, I will continue the discussion by showing you how to configure the Terminal Service gateway to interact with the certificate authority that you created.
An Overview of Longhorn Server’s Terminal Service Gateway (Part 2): Date - Aug 15, 2006; Author - Brien M. Posey; In this article, I will continue the discussion by showing you how to confirm that the necessary services are installed correctly. From there, I will show you how to create a certificate authority that issues the certificates used to encrypt gateway traffic.
Brute Force Hacking In Terminal Server Environments: Date - Jul 20, 2006; Author - Michel Roth; In this article I will discuss how hackers use tools to perform brute force password hacking in Terminal Server environments.
An Overview of Longhorn Server’s Terminal Service Gateway (Part 1): Date - Jul 06, 2006; Author - Brien M. Posey; In this article I will explain how the Terminal Services Gateway makes it easier for remote users to access a terminal server session.
How To Use ResHacker To Secure Your Terminal Server Environments: Date - Jun 28, 2006; Author - Michel Roth; This article discusses how to use ResHacker to lock down Terminal Server applications.
Securing Your Terminal/Citrix Servers with The Security Configuration Wizard: Date - Mar 16, 2006; Author - Michel Roth; Terminal/Citrix environments by their very nature allow interactive access to their servers. Interactive access to a server also happens to be the Valhalla in hackerland. Seems like you’re stuck between a rock and a hard place, right? There’s only one thing to do: secure those servers! One of the tools you should use to secure your servers is the Security Configuration Wizard.
Securing the Windows Terminal Services: Date - Feb 08, 2006; Author - Brien M. Posey; Security is important for just about any computer network, but it tends to be especially important in a Terminal Service environment. Think about it for a moment; users are running applications directly on your server. If a vulnerability exists in an application or in the server’s configuration exists, then the vulnerability could potentially be exploited in an effort to gain access to the underlying operating system. That being the case, it’s worth spending some extra time making sure that you have done a good job securing the Terminal Services. In this article, I will share some security techniques with you.
What RDP GPO Settings can do to your Citrix Servers: Date - Oct 26, 2005; Author - Wilco van Bragt; Within Windows 2003 Server, Microsoft has added several new Group Policy Objects (GPO) settings to their product. The Terminal Server object is one which got a lot of new settings. Wonderful settings if you are using Terminal Server, but what happens if you are using these settings on a Terminal Server where Citrix Presentation Server is installed?