Access Anywhere VPN and Remote Desktop

Similar Messages

• VPN and Remote Desktop Connection

  I have a standalone windows 2012 server that runs a domain with a few workstations. I have successfully configured a PPTP VPN and can connect using a Windows 7 computer at home. Once connected to the VPN, I can Remote Desktop to the server - but not any
  other computers. The computer I'm trying to connect to runs Windows 7 and has remote desktop connections enabled.
  Under the Access Details in the Remote Access Management the VPN connection is shown correctly first to the router (x.x.x.1) then the server (x.x.x.2) under Protocol 17 and Port 53. Then the server is shown again under Protocol 17 and Port 3389, which must
  be the Remote Desktop connection. And then the workstation on the domain (x.x.x.20) also shows a connection with Protocol 17 and Port 3389. However, the remote desktop connection fails everytime. I'm not sure where the issue exists since it appears the server
  is seeing and acknowledging the remote desktop connection. On my router I have PPTP passthrough enabled and port forward 3389 to the server.
  I have attempted to use the workstations internal IP address as well as the computer name (workstation and workstation.domain.local) when connecting.
  Thanks for your help.
  I just noticed these three event errors on the destination remote machine. Not sure why it's trying to use L2TP?
  Failed to apply IP Security on port VPN2-1 because of error: A certificate could not be found.  Connections that use the L2TP protocol over IPSec require the installation of a machine certificate, also known as a computer certificate..  No calls
  will be accepted to this port.
  A certificate could not be found. Connections that use the L2TP protocol over IPsec  require the installation of a machine certificate, also known as a computer  certificate. No L2TP calls will be accepted.
  The Secure Socket Tunneling Protocol service either could not read the SHA256 certificate hash from the registry or the data is invalid. To be valid, the SHA256 certificate hash must be of type REG_BINARY and 32 bytes in length. SSTP might not be able to
  retrieve the value from the registry due to some other system failure. The detailed error message is provided below. SSTP connections will not be accepted on this server. Correct the problem and try again.

  Morning Trent,
  I don't know if this is still an issue for you, did you get it solved?
  If not, check on the server whether the user credentials that you're using to RDP to the workstation are actually authorised server-side. If that checks out, on the VPN connection you can specify a protocol to use. Specify the protocol that your VPN is configured
  to use on the server.

• OSX Lion Server VPN and Remote Desktop

  I can connect with vpn to my OSX Lion Server from the internet to my home network.
  With remote Desktop I can reach only the server itself not my other clients in the network.
  With my previous environment based on Snow Leopard server that was no problem.
  What could be the problem?

  I have an answer, but it has taken a long time to figure it out.
  I have a Mac Pro, running behind an Airport Extreme 811N router.  I ran OSX Server 10.6x and after I did the upgrade to 7.5.x firmware on my airport the L2PT service died going thru my router.  I simply switched to the PPTP VPN because it appeared to work fine.  Then I upgraded (or downgraded) to 10.7x Server.  When I did that they got rid of PPTP as an option, and my L2PT connections still did not work.  I went looking online for answers, and found alot of references to the 7.5.x firmware.  I ran a test to see if I could connect to the VPN internal to the LAN - thereby bypassing the router as an issue.  It worked flawlessly.  It definately had something to do with the way 7.5.x handles a packet. 
  After several trial/error sessions, I figured out that it was the DCHP service on the Airport Extreme that was causing the problem.  For whatever reason if you have DCHP assign the IP address to your VPN server, it will never work.  I took the server out of the DCHP pool, and gave it a static IP.  Once I did that and correctly configured the interface on my server (be sure to setup the DNS correctly if you use static IP) I was able to get the VPN to work flawlessly.  Was even able to turn the Back to my Mac feature back on.
  Don't know if this helps, but I have personally logged 3 days on this problem over the last 2 months.  I am pleased it is resolved.

• Unable to access Standalone VM via Remote Desktop through a VPN

  Good Morning everyone, now here is my problem.
  My company is a small software development house and we test our software on Win 7 or 8 VM's running on standalone (ie not on the domain) VM's. We are running the VM's on WS2012 R2 Hyper V and when we are inside the building we are able to Remote Desktop
  onto these VM's direct without any problem. The problem comes when we want to RD onto the VM's when working from home via the VPN. When we try to connect to the VM's via RD through the VPN the Remote Desktop Connection fails with the following alert "Remote
  Desktop can't find the computer '[Computers Name]'. This might mean that '[Computers Name]' does not belong to the specified network. Verify the computer name and domain that you are trying to connect to." The only way I can connect to the VM's is
  by going onto the host server and access the VM's via Hyper V manager and use it that way.
  Now when I try to connect to a VM that is running on the Domain via the VPN I connect without any problems at all.
  So my question is why can I connect to standalone VM's via RD without any problems when in the office but when I am at home via VPN I can't but I can connect to VM's on the domain without any problems? What do I need to do to make this work?
  Phil

  Hi Darren,
  I have just tested it and when at work I can ping by name a named server and the standalone VM without any problems.
  But when I connect from the outside via the VPN I am still able to ping by name a named server but not the stand alone server. Nor can I ping the IP address of the standalone VM although I can connect to a standalone VM using its IP address via RDC
  Phil

• New to server, need VPN for remote desktop and file share...

  I've set up server and have the VPN working, I think, I need to have several outside systems join the servers VPN permanently to allow for file sharing and remote desktop. I don't want the "normal" internet browsing to go through the VPN (huge slow down) I have read that a "split DNS" or "split tunnel" is what I need, then to disable "send all traffic over VPN connection" option on each remote system. I was a little confused after reading on how to do this on Leopard server (the only instructions I found) but have absolutely no idea on how to do this on Snow Leopard server (the server I set up is 10.6) any assistance would be great, thanks in advance.

  Server Admin, VPN, Settings, Client Information, Network Routing Definition.
  Here add a private network record type that matches your LAN/VPN ip.
  For example
  IP Address: 192.168.0.0
  Mask: 255.255.255.0
  Type: Private
  You can find more informations about this feature in Snow Leopard Server documentation:
  http://images.apple.com/server/macosx/docs/NetworkServices_Adminv10.6.pdf
  search for "Configuring VPN Network Routing Definitions"

• Hp laserjet pro m1217nfw and remote desktop printing

  hp laserjet pro m1217nfw and remote desktop printing, is there any issues with said function?

  whats the problerm you are having??

• Remote control and remote desktop client in sccm 2012 ?

  What is the difference between remote control and remote desktop client in sccm 2012 ?

  Remote Control is a built-in feature for SCCM 2012 and uses the RPC protocol. When you use this, the user can still be logged on while helping.
  Remote Desktop is a buit-in feature for Windows and uses the RDP protcol. When you use it, the user will be logged off.
  Why you would use one over the other depends on your requirements.
  Blog: www.danielclasson.com/blog |
  LinkedIn:
  Daniel Classon | Twitter: @danielclasson

• Cisco VPN Software and Remote Desktop Problem

  Hello-
  Please have patience as I just got my first mac and I'm really just learning how everything works.
  Anyway, I'm trying to connect to my office network from my iMac (OS X 10.5.3) using the Cisco VPN client ver. 4.9.01 (0030) and the Remote Desktop Connection v2.0.0 Beta 3. I'm able to connect via the VPN but I cannot connect to the remote machine using either the machine's hostname or IP address.
  In order to troubleshoot the issue, I tried to ping the remote machine after connecting via VPN and it fails. The name is resolving but ping fails with a "No route to host" and then "Host is down error." However, I know the host is up since when I connect via VPN from my PC I can ping the remote machine without a problem.
  Anyone have any ideas? Does the Cisco VPN client for Mac not work well? Is there some simple configuration setting I'm missing somewhere? BTW, I'm connecting to the Internet via WiFi and am using a Linksys WRT54G router.
  thx,
  ian

  Hello Ian:
  Welcome to Apple discussions (and to the wonderful world of Macs). I think you will find these forums represent the best on-line community anywhere - and everyone is a volunteer!
  I am no help with your problem as I have not used a Cisco VPN. However, in my previous business life I did connect my home Mac to my business VPN. I found that our IT people were most helpful in smoothing connection issues.
  This forum addresses connection issues if you want to post there:
  http://discussions.apple.com/forum.jspa?forumID=1222
  Barry

• Accessing Xserve Desktop Out Of Network via VPN or Remote Desktop

  Hi everyone,
  Thanks a lot for taking the time to look at my question.
  I'm trying to figure out how I would set up an Xserve so that it could operate on a work network while allowing users to access it away from work (at their houses) with a login and password that I've set up in the Xserve. That way they can access specific applications on the server.
  I've searched through the forums and other documentation already with moderate success. Apparently I don't NEED a static IP address for my Xserve but it would make it easier. It seems that the most highly recommended solution is setting up a VPN.
  So after some further research, I found that the VPN can be set up directly within the OSX server but I'm unclear on how to actually allow it to do what I'm trying to do. I don't want my external users to be able to have any admin rights -- I basically want them to remote desktop into a user account on the xserve with no ability to change any settings, but to access one application on it so they can run that application on the server.
  Any help would be greatly appreciated.
  Thank you!

  If I understand your request correctly, what you want cannot be done out of the box.
  Despite Mac OS X Server's ability to support multiple users, it's still limited to one GUI environment/desktop. That means that there's only one set of GUI apps that can run at a time.
  You could have multiple users log on using Remote Desktop, but they'd all see the exact same thing. In addition, actions (key presses, mouse movements, etc.) by any one user would be reflected on every other screen, so it's not practical to have multiple users trying to use the same GUI environment.
  You need to more clearly define what it is you're trying to achieve. Why, for example, are you trying to run applications remotely over the internet, given the additional latency inherent in this kind of setup)? What do you expect to gain?
  More importantly, what application(s) are you trying to run?
  Some applications support remote processing (e.g. an application you run locally on your machine submits a job to the server for processing, based on the idea that the server is a more powerful machine).
  Other apps support collaboration where multiple users can share the same data and updates are dynamically reflected on other clients.
  There are some hacks that emulate multiple desktops, and they might work for you, but you need a better understanding of what you're trying to do.

• Audio Redirection and Remote Desktop Web Access

  I recently deployed a 2012r2 Remote Desktop solution. I have a collection published for remote desktop sessions and have configured it to allow all redirection shown in the interface. However when users connect through Web Access, they do not get audio recording
  redirection.
  Is there a way to enable this through Remote Desktop Web Access?

  Hi,
  Glad to hear that it is up now. Please keep us informed when the issue is resolved.
  Best Regards.
  Jeremy Wu
  TechNet Community Support

• 4150L - Works on web, but can not connect via VPN or Remote Desktop

  Recently purchased a 4150L and installed the latest firmware.  We have been able to access all public websites without any problems.  But, when we try and access our customers computers via VPN (various types) or Remote Desktop, we can't connect.  We can sign-in to VPN, but when we try and access the computer, it says "can't connect".  Exact same message with Remote Desktop.   We are able to connet when use a Verizon phone as a hotspot and from every other internet service that we have tried (i.e. hotels, starbucks, etc.)   It appears it is an issue with the 4150L.
  Verizon Tech Support has been no help!
  All ideas are appreciated!
  Thanks,
  Skip

  Skip,
  VPN traffic should be allowed through on the MiFi 4510L by default.  I know I do not have any issues with mine on either the Cisco IPSec or Cisco SSL VPN Clients.
  If Verizon DNS is interferring then perhaps you could try to connect to your VPN via a direct IP Address instead of a URL.  Not sure what VPN client you have but there should be a No DNS option to connect if you know the correct IP.  You could also try switching your DNS to one of the free ones such as the one offered by Google or any of the others.
  VPN's carry alot of overhead on existing connections in my experience.  Its not untypical to have a 3G connection cut in half when a VPN is applied.  Try running a speed test to make sure your connection is atleast 1 MB on download before initiating a connection.  If the performance of the MiFi is too poor in that area it may never be stable enough to support a connection.  Feel free to post some Speedtest.net averages so we can see what you are working with.
  Something to note about the MiFi 4510L is that it is on the SIM card network.  That means that NAT is always going to be an issue and block your users from providing a truely public IP Address.  Directly remoting to them through any means will be nearly impossible.

• Help in setting up VPN for Remote Desktop

  Hi,
  We recently purchased a Cisco RV220W VPN Router and want to set up VPN connections for about 10 users(employess) to connect to their work PCs (mostly win 7 & win 8) from their home computers (windows & mac) using Remote Desktop. The documentation is quite poor. Can anyone point me to a tutorial and/or help me out with steps and settings? From the Admin Guide, it looks like I should be configuring Remote Access with an IPsec Client, but it's not clear how to handle/route multiple machines?

  Hi Ray,
  You can use the QuickVPN client to connect up to Windows 7 PCs. Windows 8 is not supported as of yet.
  For Windows 8 and Mac you can create PPTP users or try a third party VPN client like Shrewsoft (Windows) or IPSecuritas (Mac). You also have the SSL VPN option in the RV220W. Please note that the third party clients are not officially supported by Cisco.
  There are some good instructions for setting up Shrewsoft with the SA500 which is similar to the RV220W here:
  https://supportforums.cisco.com/docs/DOC-9378#comment-7216
  IPSecuritas for Mac:
  http://www.cisco.com/en/US/docs/security/multi_function_security/multi_function_security_appliance/sa_500/technote/note/SA500_mac_appnote.pdf
  Please reply if you have any questions.
  - Marty

• Problems with iTunes 7 cover flow and remote desktop

  Hi. iTunes 7 is an amazing upgrade, but unfortunatly the nicest addtion doesn't work for me with remote desktop, which is how I primarily access my music server.
  When using remote desktop, and I switch to cover flow, I just get a message in the cover flow panel saying something to the effect of "itunes cannot display...".
  Any help appreciated.

  I had major issues until I visited http://docs.info.apple.com/article.html?artnum=304434 and turned my Terminal Services back on. I had set it to "Disable" to save resources. Once I set it to "manual", the IPOD worked great with Itunes.

• Windows 2012 R2 Active Directory Domain Services and Remote Desktop services Role on the same server.

  Findings: 
  Currently, Windows 2012 R2   AD DS role and RDS With Broker services can only seem to coexist properly in a new domain not an existing domain. Any attempt to add to an existing domain causes internal database user access denied issues and any attempt to
  adjust rights and circumvent is dubious at best.
  The escalation technician said it best. Out of 50 clients that want to do this, they end up not being able to help 5 right off the bat for whatever reason. As for the other 40 they might be able to help by running reports, adjusting rights and trying to add
  the roles until it works.  This can end up being a 20 day process. Basically they are playing whack-a-mole with user rights and permissions until something sticks.
  We tried creating an OU where any other domain policies would not be inherited to see if that was the issue, a fresh install with different sequence of adding the Roles, no effect.
  Given the errors I witnessed when running procmon and then trying to add the roles, the NT System and the Windows Internal database user had access denied issues on 100+ registry keys when trying to add the roles. After that the system is not behaving normally.
  The errors displayed almost mirror the errors that would occur on Windows 2012 when those two roles would be added which of course is officially NOT supported on that system.
  This blog needs serious revision:
  http://blogs.msdn.com/b/rds/archive/2013/07/09/what-s-new-in-remote-desktop-services-for-windows-server-2012-r2.aspx
  This is the excerpt from that blog: Single server RDS deployment including Active Directory. We now support running our RD Connection Broker role service on the same physical instance as an Active Directory Domain Controller.  In addition, we published
  guidelines for how RD Session Host could be used without the RD Connection Broker.
  Microsoft Support was curteous and helpful and they were the ones who advised cutting our losses, which mirrored my hunch after seeing what was transpiring in the system.  They refunded my money for the support call. 
  For me, it was an opportunity to find out if there was any way to configure Windows 2012 R2 in the Same manner that it was setup as Windows 2008 R2 and lay that to rest. The coexistence is poorly implemented. It is as if there was a reaction from all the deprecation
  of bread and butter features such as shadowing in TS and the coexistence of AD DS and RDS to where those features were re-added haphazardly. (I have no complaints on shadowing on Windows 2012 R2 it works, just do not like having to go to server manager to
  use it).
  I opted for virtualizing the Domain controller to eliminate the incompatibility issues and that is what I will be doing from now on. I found free solutions for backing up and reporting for virtual machines as well as the suggested procedures for configruing
  a Domain controller as a virtual machine on a Hyper-V environment and I will be sticking to those. Thus far the setup has been operational.
  I am not allergic to virtualization, but for really small setups it adds additional time and considerations but if that is how it has to be done, so be it. Windows 2008 R2 days are numbered and since we can usually squeeze 5-7 years on quality server equipment,
  buying a Windows 2008 R2 setup now is a borderline disservice in my opinion.
  Hopefully someone finds this useful and saves some time.

  Hi,
  Thank you for posting in Windows Server Forum.
  Do you need any other assistance?
  Based on your description, you are describing your story of successfully implementing RDS server with AD role and more regarding all RDS related scenario. For shadowing feature, you can use with command also. Below is the syntax to shadow a session.
  mstsc /v:<ServerName> /shadow:<SessionID>
  Hope it helps!
  Thanks.
  Dharmesh Solanki
  TechNet Community Support

• CSS load balancing and Remote desktop

  hi all!
  here is config:
  !*************************** GLOBAL ***************************
  cdp run
  ip redundancy
  ip route 0.0.0.0 0.0.0.0 10.12.248.1 1
  !************************* INTERFACE *************************
  interface 2/1
  bridge vlan 2
  interface 2/2
  bridge vlan 3
  !************************** CIRCUIT
  circuit VLAN1
  redundancy
  ip address 10.12.248.101 255.255.248.0
  circuit VLAN2
  ip address 192.168.1.1 255.255.255.252
  redundancy-protocol
  circuit VLAN3
  redundancy
  ip address 192.168.7.25 255.255.255.0
  !************************** SERVICE **************************
  service Node1
  ip address 192.168.7.23
  active
  service Node2
  ip address 192.168.7.24
  active
  !*************************** OWNER ***************************
  owner RenCap
  content Cluster_Nodes
  add service Node1
  add service Node2
  vip address 10.12.248.100
  active
  content Mngmnt_Node1
  add service Node1
  vip address 10.12.248.102
  active
  content Mngmnt_Node2
  add service Node2
  vip address 10.12.248.103
  active
  CSS_Primary#
  Remote desktop of Node1 and Node2 is accesible, but only by local login and password.
  How i can use tacacs for authentication on Node?
  in other words, how can be LAN servers available from Node1 and Node2?

  The document http://www.cisco.com/en/US/products/sw/secursw/ps2308/products_configuration_example09186a0080094848.shtml gives a complete configuration exmaple on Configuring TACACS Authentication with VPN Client.