I am setting up a terminal server thru VPN in 3 locations. Two locations are on differnt domains. The firewall VPN solution between the main site (1) and location 2 will have a VPN that allows traffic to see the main site (1) but for the main site NOT to see back at location 2. This is required for security reasons. Site 3 has client computers only and a bi-directional VPN setup.
My question is this, In order to set up a terminal session I need to indicate that the user is authorized for a terminal session in active directory. This is done with his/her logon and in the case of site 2 will be a differnt domain then site 1 (the location of the terminal server.)
Does this have the possiblility of not allowing me to sign on the terminal server because of conflicting security accounts?
Do I need to set up duplicate user accounts on the domain at site 2 and the member (terminal) server at site 1?
I really cannot create a domain trust because of the 1 way VPN and security issues.
Also on the clients at site 3, how would I setup thier user accounts to logon to the member server without joining them to the domain at the main site (1).
I understand that once a terminal session is activated users need to logon on with an account local to the terminal server domain, but I am confussed about how the first part of the initaliztion process would work.
Any help would be greatly appreciated.
Thanks in advance
My question is this, In order to set up a terminal session I need to indicate that the user is authorized for a terminal session in active directory. This is done with his/her logon and in the case of site 2 will be a differnt domain then site 1 (the location of the terminal server.)
Does this have the possiblility of not allowing me to sign on the terminal server because of conflicting security accounts?
Do I need to set up duplicate user accounts on the domain at site 2 and the member (terminal) server at site 1?
I really cannot create a domain trust because of the 1 way VPN and security issues.
Also on the clients at site 3, how would I setup thier user accounts to logon to the member server without joining them to the domain at the main site (1).
I understand that once a terminal session is activated users need to logon on with an account local to the terminal server domain, but I am confussed about how the first part of the initaliztion process would work.
Any help would be greatly appreciated.
Thanks in advance
