You are on page 1of 30

Module 11: Supporting Remote Users

Overview
Establishing Remote Access Connections Connecting to Virtual Private Networks Configuring Authentication Protocols and Encryption Using Remote Desktop Storing User Names and Passwords to Facilitate Remote Connections

Lesson: Establishing Remote Access Connections


Establishing Outbound Connections Exploring Hardware Options Creating a Direct Cable Connection Creating Dial-up and Broadband Connections Establishing a Remote Access Session Examining Data Transport Protocols Configuring Multilink Connections

Establishing Outbound Connections


Internet Connections Dial-up and broadband connections using a modem, ISDN line, cable modem, or DSL modem Connections to Private Networks Dial-up or VPN connections Advanced Connections Direct cable connections

Exploring Hardware Options

PSTN

X.25 Direct Connection

ISDN
Cable Modem

Creating a Direct Cable Connection

Client

Server

Creating Dial-up and Broadband Connections

Client

ISP Server

Internet

Client

Remote Access Server

Establishing a Remote Access Session


Local Area Network LAN Protocols Remote Access Protocols Remote Access Server Internet

Remote Access Client

Examining Data Transport Protocols


Remote Access Protocols
PPP SLIP (client only)

LAN Protocols
TCP/IP NWLink

RAS (Microsoft)

Remote Access Server

Remote Access Protocols LAN Protocols

Remote Access Client

Configuring Multilink Connections


PPP Multilink
Remote Access Server

PPP Multilink with BAP


A
Remote Access Server

C Connection Switches on Demand

Lesson: Connecting to Virtual Private Networks


Examining Client Connections Configuring a Virtual Private Network Connection Configuring Virtual Private Network Protocols Configuring Inbound Connections

Examining Client Connections


Configuring a VPN connection Configuring VPN protocols
Internet Adapter
Internet Windows 2000 or Windows Server 2003

Intranet Adapter Corporate Intranet

Tunnel

VPN Remote Access Client

Configuring a Virtual Private Network Connection

Configuring Virtual Private Network Protocols


PPTP
Internetwork must be IP-based No header compression No tunnel authentication Built-in PPP encryption

L2TP
Internetwork can be based on IP, frame relay, X.25, or ATM Header compression Tunnel authentication IPSec encryption
Internet

Client

PPTP or L2TP

Server

Configuring Inbound Connections


Configuring Devices Enabling VPN Connections Configuring User Permissions Choosing and Configuring Network Software

Lesson: Configuring Authentication Protocols and Encryption


Standard Authentication Protocols Extensible Authentication Protocol Configuring Client Authentication Protocols Configuring Client Data Encryption

Standard Authentication Protocols


Protocol
PAP SPAP CHAP MS-CHAP

Security
Low Medium High High

Use when
A client and server cannot negotiate using more secure validation A Shiva client calls in to a server running Windows, or a Windows XP client calls in to a Shiva server You have clients not running Microsoft operating systems You have clients running Windows NT Workstation 4.0 or later, or Microsoft Windows 95 or later You have dial-up clients running Windows 2000 or later, or VPN clients running Windows NT 4.0 or Windows 98 or later

MS-CHAP v2

High

Extensible Authentication Protocol


Allows the client and server to negotiate the authentication method that they will use

Supports authentication by using


MD5-CHAP Transport Layer Security Additional non-Microsoft authentication methods Ensures support of future authentication methods through an API

Configuring Client Authentication Protocols

Configuring Client Data Encryption

Lab A: Configuring a VPN Connection


Exercise: Configuring Inbound VPN Connections

Lesson: Using Remote Desktop


Examining the Remote Desktop Feature Configuring Computers to Use Remote Desktop

Examining the Remote Desktop Feature

Remote Desktop

Must be running Windows XP Must be configured to accept incoming connections

Local Desktop

Must have Terminal Services client installed or configured to use Remote Desktop

Configuring Computers to Use Remote Desktop

Lab B: Configuring and Using Remote Desktop


Exercise: Configuring Remote Desktop

Lesson: Storing User Names and Passwords to Facilitate Remote Connections


Introduction to Stored User Names and Passwords to Facilitate Remote Connections

Adding Credentials to Stored User Names and Passwords

Introduction to Stored User Names and Passwords to Facilitate Remote Connections


Benefits of Stored User Names and Passwords Users log on only once Credentials are stored for later use Credentials are portable Best practices Use different passwords Use strong passwords

Change passwords regularly


Use the This logon session only option

Adding Credentials to Stored User Names and Passwords

Lab C: Storing User Names and Passwords


Exercise: Storing User Names and Passwords

Course Evaluation