Windows Server Administration/Remote Access

This lesson covers remote access using Windows Remote Assistance, Remote Desktop Services, and virtual private networks. Activities include using Windows Remote Assistance, Remote Desktop, and Remote Server Administration Tools.

Objectives and Skills edit

Objectives and skills for the Understanding Server Roles portion of Windows Server Administration Fundamentals certification include:[1]

  • Understand remote access: remote assistance; remote administration tools; Remote Desktop Services; licensing; RD Gateway; VPN; application virtualization; multiple ports

Readings edit

  1. Wikipedia: Quick Assist
  2. Wikipedia: Remote desktop software
  3. Wikipedia: Remote administration
  4. Wikipedia: Remote Desktop Services
  5. Wikipedia: Application virtualization
  6. Wikipedia: Virtual private network

Multimedia edit

  1. YouTube: How to use Windows 10 Quick Assist to Remotely Troubleshoot PC problems
  2. YouTube: Enable Remote Desktop Protocol (RDP) on Windows Server 2019
  3. YouTube: How to Use Remote Desktop Connection Windows 10
  4. YouTube: How to install Remote Server Administration Tools (RSAT) on Windows 10
  5. YouTube: How to install Remote Server Administrator Tools in Windows 10
  6. YouTube: Install and Configure Remote Desktop Services RDS on Windows Server 2019
  7. What is a VPN?]

Activities edit

  1. Review Installing a Windows Role/Feature with Server Manager. Add Remote Assistance
  2. Review How to Enable Remote Assistance Using Group Policy. Configure Remote assistance and initiate remote assistance to another user.
  3. Review How To Enable Remote Desktop In Windows Server 2019. Enable Remote Desktop. Use Windows Firewall to verify that Remote Desktop is enabled. Use another computer to access the server remotely using Remote Desktop.
  4. Review Install or Uninstall Roles, Role Services, or Features. Add a role or feature with the gui and one with PowerShell
  5. Review Manage a Server Core server. Remotely administer a Server Core server and install a role by Server Manager, RSAT on Windows 10 or PowerShell.
  6. Review Remote Desktop Services. Click on the "Supported configurations for Remote Desktop Services in Windows Server 2016 and discuss some of the best practices and architectures.
  7. Review Microsoft Remote Desktop Clients. Install Remote Desktop Client on your Android or iOS tablet or smartphone and use the app to connect to the Remote Desktop server.
  8. Review License your RDS deployment with client access licenses (CALs). Use your preferred software license vendor to determine the cost per license for RDP CALs.
  9. Review Microsoft Application Virtualization.
  10. Review Deploy Always On VPN. Configure and test a an Always on VPN server.
  11. Review How to Install VPN using RRAS. Configure your server with RRAS for VPN connections. See if you can connect to it.

Lesson Summary edit

  • Windows Quick Assist allows a user to temporarily view or control a remote Windows computer over a network or the Internet to resolve issues without directly touching the unit.[2]
  • Windows Remote Assistance is based on the Remote Desktop Protocol.[3]
  • Windows Quick Assist is installed by default on Windows clients, but must be added manually on Windows Server 2019 servers using the Add Features Wizard in Server Manager.[4]
  • Remote assistance sessions may be initiated using the Windows Quick Assist application or by using the msra.exe command line interface.[5]
  • Remote desktop refers to a software or operating system feature that allows a personal computer's desktop environment to be run remotely on one system while being displayed on a separate client device.[6]
  • Common remote desktop approaches include open source VNC and Microsoft's RDP.[7] Of the two, RDP offers better performance.[8]
  • Remote Desktop connections are disabled by default, but may be enabled using System Properties.[9]
  • Remote administration refers to any method of controlling a computer from a remote location.[10]
  • Windows business clients and server editions may be remotely administered using the Microsoft Management Console, the Windows Registry Editor, and various command-line utilities, in addition to Remote Desktop connections.[11]
  • Remote Server Administration Tools for Windows 10 enables IT administrators to manage roles and features that are installed on remote computers that are running Windows Server 2019.[12]
  • Remote Desktop Services allows a user to access applications and data on a remote computer over a network, using the Remote Desktop Protocol (RDP).[13]
  • Remote Desktop clients may be full-fledged computers, thin clients, tablets or smartphones.[14]
  • In the client versions of Windows, Remote Desktop supports only one logged in user at a time, whereas in the server operating systems, concurrent remote sessions are allowed.[15]
  • With Remote Desktop Services, only the user interface of an application is presented to the client, while application execution takes place on the server. This is in contrast to application streaming systems like Microsoft Application Virtualization, in which the applications are streamed to the client and executed on the client machine.[16]
  • The Remote Desktop service listens on TCP port 3389, and supports low, medium or high encryption.[17]
  • Remote Desktop Licensing enables a server to manage Remote Desktop Services client access licenses (RDS CALs) that are required for each device or user to connect to a Remote Desktop Session Host server. RDS CALs are managed using the Remote Desktop Licensing Manager application.[18]
  • The Remote Desktop Gateway component, also known as RD Gateway, tunnels Remote Desktop Protocol sessions through an HTTPS connection, thus encapsulating the session with Transport Layer Security (TLS).[19]
  • A virtual private network (VPN) extends a private network across a public network, such as the Internet, and enables a computer to send and receive data as if it were directly connected to the private network.[20]
  • VPNs provide security by the use of tunneling protocols and through security procedures such as authentication and encryption.[21]
  • Windows Server 2019 VPN supports the following tunneling protocols: PPTP, L2TP, and SSTP.[22]
  • Windows Server 2019 VPN supports the following authentication methods: PAP, CHAP, MS-CHAP v2, and EAP.[23] EAP implemented with public key certificates is considered to be the most secure.[24]

Key Terms edit

Apple Remote Desktop (ARD)
A Macintosh application produced by Apple Inc., that allows users to remotely control or monitor other Macintosh computers over a network.[25]
application virtualization
A software technology that encapsulates application software from the underlying operating system on which it is executed.[26]
Challenge-Handshake Authentication Protocol (CHAP)
An authentication protocol that uses an algorithm to generate a password challenge based on a known password without ever transmitting the actual password across the network, making it more secure than PAP.[27]
Citrix XenApp
An application virtualization product that allows users to connect to their corporate applications from a wide range of computer systems and mobile devices.[28]
Extensible Authentication Protocol (EAP)
An authentication framework providing for the transport and usage of keying material and parameters and supporting a wide variety of authentication methods.[29]
Generic Routing Encapsulation (GRE)
A tunneling protocol developed by Cisco Systems that can encapsulate a wide variety of network layer protocols inside virtual point-to-point links over an Internet Protocol internetwork and identified as IP protocol type 47.[30]
Layer 2 Tunneling Protocol (L2TP)
A tunneling protocol used to support virtual private networks (VPNs).[31]
MS-CHAP
The Microsoft version of the Challenge-Handshake Authentication Protocol, CHAP.[32]
NAT traversal
A general term for techniques that establish and maintain Internet protocol connections traversing network address translation (NAT) gateways.[33]
Network Address Translation (NAT)
The process of modifying IP address information in IPv4 headers while in transit across a traffic routing device.[34]
Password Authentication Protocol (PAP)
An authentication protocol that uses a clear-text password.[35]
Peer Name Resolution Protocol (PNRP)
A peer-to-peer protocol designed by Microsoft that enables dynamic name publication and resolution, and requires IPv6.[36]
Point-to-Point Tunneling Protocol (PPTP)
A method for implementing virtual private networks using a TCP connection on port 1723 and a GRE tunnel to encapsulate PPP packets.[37]
RemoteApp
A special mode of Remote Desktop Services where the user interface for a remote application is rendered in a window on the local desktop, and is managed like any other window for local applications.[38]
RemoteFX
A set of Microsoft technologies that enhance the visual experience of the Remote Desktop Protocol (RDP).[39]
Secure Socket Tunneling Protocol (SSTP)
A form of VPN tunnel that provides a mechanism to transport PPP or L2TP traffic through an SSL 3.0 channel, allowing SSTP to pass through most firewalls and proxy servers.[40]
Terminal Services
The previous name for Microsoft's Remote Desktop Services.[41]
tunneling protocol
A network protocol (the delivery protocol) used to encapsulate a different payload protocol to carry a payload over an incompatible delivery-network or provide a secure path through an untrusted network.[42]
Virtual Network Computing (VNC)
An open source graphical desktop sharing system that uses the Remote Frame Buffer protocol (RFB) to remotely control another computer.[43]
Wake-on-LAN
An Ethernet computer networking standard that allows a computer to be turned on or awakened by a network message.[44]

Review Questions edit

Enable JavaScript to hide answers.

Click on a question to see the answer.

  1. Windows Quick Assist allows a user to temporarily _____ to resolve issues without directly touching the unit.
    Windows Quick Assist allows a user to temporarily view or control a remote Windows computer over a network or the Internet to resolve issues without directly touching the unit.
  2. Windows Remote Assistance is based on the _____ protocol.
    Windows Remote Assistance is based on the Remote Desktop Protocol.
  3. Windows Quick Assist is installed by default on _____, but must be added manually on _____ using _____.
    Windows Quick Assist is installed by default on Windows clients, but Remote Assistance must be added manually on Windows Server 2019 servers using the Add Features Wizard in Server Manager.
  4. Remote assistance sessions may be initiated using the Windows Quick Assist application or by using the _____ command line interface.
    Remote assistance sessions may be initiated using the Windows Quick Assist application or by using the msra.exe command line interface.
  5. Remote desktop refers to a software or operating system feature that allows _____.
    Remote desktop refers to a software or operating system feature that allows a personal computer's desktop environment to be run remotely on one system while being displayed on a separate client device.
  6. Common remote desktop approaches include open source _____ and Microsoft's _____. Of the two, _____ offers better performance.
    Common remote desktop approaches include open source VNC and Microsoft's RDP. Of the two, RDP offers better performance.
  7. Remote Desktop connections are disabled by default, but may be enabled using _____.
    Remote Desktop connections are disabled by default, but may be enabled using System Properties.
  8. Remote administration refers to _____.
    Remote administration refers to any method of controlling a computer from a remote location.
  9. Windows business clients and server editions may be remotely administered using _____, _____, and _____, in addition to _____ connections.
    Windows business clients and server editions may be remotely administered using the Microsoft Management Console, the Windows Registry Editor, and various command-line utilities, in addition to Remote Desktop connections.
  10. Remote Server Administration Tools for Windows 10 enables IT administrators to _____.
    Remote Server Administration Tools for Windows 10 enables IT administrators to manage roles and features that are installed on remote computers that are running Windows Server 2019.
  11. Remote Desktop Services allows a user to _____, using the _____ protocol.
    Remote Desktop Services allows a user to access applications and data on a remote computer over a network, using the Remote Desktop Protocol (RDP).
  12. Remote Desktop clients may be _____, _____, _____ or _____.
    Remote Desktop clients may be full-fledged computers, thin clients, tablets or smartphones.
  13. In the client versions of Windows, Remote Desktop supports _____ at a time, whereas in the server operating systems, _____ remote sessions are allowed.
    In the client versions of Windows, Remote Desktop supports only one logged in user at a time, whereas in the server operating systems, concurrent remote sessions are allowed.
  14. With Remote Desktop Services, only _____ is presented to the client, while application execution takes place _____. This is in contrast to application streaming systems like _____, in which the applications are streamed to the client and _____.
    With Remote Desktop Services, only the user interface of an application is presented to the client, while application execution takes place on the server. This is in contrast to application streaming systems like Microsoft Application Virtualization, in which the applications are streamed to the client and executed on the client machine.
  15. The Remote Desktop service listens on _____ port _____, and supports _____ encryption.
    The Remote Desktop service listens on TCP port 3389, and supports low, medium or high encryption.
  16. Remote Desktop Licensing enables a server to manage _____ that are required for _____ to connect to a Remote Desktop Session Host server. RDS CALs are managed using the _____ application.
    Remote Desktop Licensing enables a server to manage Remote Desktop Services client access licenses (RDS CALs) that are required for each device or user to connect to a Remote Desktop Session Host server. RDS CALs are managed using the Remote Desktop Licensing Manager application.
  17. The Remote Desktop Gateway component, also known as RD Gateway, tunnels Remote Desktop Protocol sessions through _____, thus encapsulating the session with _____.
    The Remote Desktop Gateway component, also known as RD Gateway, tunnels Remote Desktop Protocol sessions through an HTTPS connection, thus encapsulating the session with Transport Layer Security (TLS).
  18. A virtual private network (VPN) _____, and enables a computer to _____.
    A virtual private network (VPN) extends a private network across a public network, such as the Internet, and enables a computer to send and receive data as if it were directly connected to the private network.
  19. VPNs provide security by the use of _____ and through security procedures such as _____ and _____.
    VPNs provide security by the use of tunneling protocols and through security procedures such as authentication and encryption.
  20. Windows Server 2019 VPN supports the following tunneling protocols: _____, _____, and _____.
    Windows Server 2019 VPN supports the following tunneling protocols: PPTP, L2TP, and SSTP.
  21. Windows Server 2019 VPN supports the following authentication methods: _____, _____, _____, and _____. _____ implemented with public key certificates is considered to be the most secure.
    Windows Server 2019 VPN supports the following authentication methods: PAP, CHAP, MS-CHAP v2, and EAP. EAP implemented with public key certificates is considered to be the most secure.

Flashcards edit

References edit

  Type classification: this is a lesson resource.
  Completion status: this resource is considered to be complete.
  1. Microsoft: Windows Server Administration Fundamentals Exam Details
  2. Wikipedia: Windows Remote Assistance
  3. Wikipedia: Windows Remote Assistance
  4. Wikipedia: Windows Remote Assistance
  5. Wikipedia: Windows Remote Assistance
  6. Wikipedia: Remote desktop software
  7. Wikipedia: Remote desktop software
  8. Wikipedia: Virtual Network Computing
  9. Microsoft: Remote Desktop Connection: frequently asked questions
  10. Wikipedia: Remote administration
  11. Wikipedia: Remote administration
  12. Wikipedia: Remote administration
  13. Wikipedia: Remote Desktop Services
  14. Wikipedia: Remote Desktop Services
  15. Wikipedia: Remote Desktop Services
  16. Wikipedia: Remote Desktop Services
  17. Wikipedia: Remote Desktop Services
  18. Wikipedia: Remote Desktop Services
  19. Wikipedia: Remote Desktop Services
  20. Wikipedia: Virtual private network
  21. Wikipedia: Virtual private network
  22. TechNet: VPN Tunneling Protocols
  23. TechNet: Authentication Methods
  24. Wikipedia: Point-to-Point Tunneling Protocol
  25. Wikipedia: Apple Remote Desktop
  26. Wikipedia: Application virtualization
  27. Wikipedia: Challenge-Handshake Authentication Protocol
  28. Wikipedia: Citrix XenApp
  29. Wikipedia: Extensible Authentication Protocol
  30. Wikipedia: Generic Routing Encapsulation
  31. Wikipedia: Layer 2 Tunneling Protocol
  32. Wikipedia: MS-CHAP
  33. Wikipedia: NAT traversal
  34. Wikipedia: Network address translation
  35. Wikipedia: Password authentication protocol
  36. Wikipedia: Peer Name Resolution Protocol
  37. Wikipedia: Point-to-Point Tunneling Protocol
  38. Wikipedia: Remote Desktop Services
  39. Wikipedia: RemoteFX
  40. Wikipedia: Secure Socket Tunneling Protocol
  41. Wikipedia: Remote Desktop Services
  42. Wikipedia: Tunneling protocol
  43. Wikipedia: Virtual Network Computing
  44. Wikipedia: Wake-on-LAN