Network security and Terminal Services for Windows Server 2008

Windows Server 2008 is by far the most reliable Windows server, enhancing operating system security and breaking security innovations, including network Access Protection, Federated Rights Management, Read-only Domain Controller provides the highest level of security for your network, data, and business.

Windows Server 2008 helps you secure your server, network, data, and user accounts to avoid failure or intrusion.

Network Access Protection can help you isolate computers that do not conform to your organization's security policy and provide network restrictions, corrections, and real-time compliance checks.

Federated Rights Management Services provides a comprehensive information protection platform that provides continuous protection for sensitive data while helping to reduce risk and ensure compliance.

Read-only Domain Controller can support the deployment of Active Directory Domain Services while restricting replication of the entire Active Directory database to better prevent server information from leaking or being stolen.

The previous section is Microsoft's introduction to Windows Server 2008 security, which is one of the basic prerequisites for other features. Under the premise of security, there will be more network applications, in today's ubiquitous network of times, traditional media stand-alone products have become increasingly unable to meet the needs of people, more software vendors have been aware of the network to bring them the convenience and challenges, Microsoft as an example, whether the network patch distribution, or based on the network of genuine value-added programs are reflected in Microsoft's use of the network, but for enterprise users, this is mainly reflected in the Terminal Services.

Terminal Services in Windows Server can improve the software deployment capabilities of an enterprise in a variety of application contexts and allow for more flexibility in the application and management infrastructure. When a user runs an application on a terminal server, the application actually executes on the server side, so only the keyboard, mouse, and display information is transferred over the network. Each user sees only his or her own session, which is managed transparently by the server operating system and is independent of any other client session.

Terminal Services provides the ability to host multiple concurrent client sessions on Windows Server. windows-based standard applications can run on a terminal server without any modification, and can manage client desktop systems with all standard Windows Server management infrastructures and technologies. In this way, organizations are able to make choices that are appropriate for their needs from the rich application and tool choices available in today's Windows operating system environment.

In the face of so close to the application of the enterprise, Microsoft will naturally continue to enhance it, in this year's upcoming Longhorn server, Terminal Server aspects of performance improvement is very gratifying. Users can independently decide which programs can be accessed remotely. At the same time, users through the new remote program and Terminal Services gateway can use Citrix Company's programs. Users can also access the program, configure the program, virtualization and the realization of the function of secure access at any time. Here's what we can do to explain the beauty of Microsoft Terminal Services:

Terminal Service gateways (Terminal Services Gateway)

A major improvement in Terminal Services in Longhorn Server is the Terminal Services Gateway (Terminal Service gateways), through which users can access Terminal Services programs across the world through a portal on the Internet. All processing is done through secure, encrypted HTTPS channels, and if users are familiar with Exchange Server or ISA Server, they will find this feature very similar to Outlook 2003 The Rpc-over-http functionality used when accessing a mail server via a virtual personal network (VPN).

The Terminal Services Gateway (Terminal Service gateways) is able to properly complete network address translation through the firewall, in addition to the fact that the data is transmitted via HTTPS, a protocol almost universally used by everyone, which avoids the previous Remote Desktop Protocol (RDP) A problem with the inability to penetrate the firewall when transmitting, because the 3389 ports used by the Desktop Protocol (RDP) are often blocked on the fire wall.

Administrators set different authorization policies for different groups of users so that they can control the ability of different users to connect to Terminal Services through the Gateway machine, and with this feature we no longer need to open the maximum software installation permissions for each user on the Internet.

If Terminal Services provides the possibility of distributed office network, then through Terminal Services gateways (Terminal service Gateway), the software that is actually deployed by the enterprise becomes flexible and controllable.