Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Can I keep a user w/ a valid ID and password from sign on?

Status
Not open for further replies.
MISAdmin

MISAdmin

MIS
Dec 27, 2001
169
US
If a user has a valid ID and Password, we're running a published desktop, and he sets up a clinet at home to connect to the Domain and login, can I prevent access to Citrix without disabling the whole account?

(2000 Servers in AD; Metaframe XPs)

If I go into active directory, go to the Terminal Services tab on the properties of the user and uncheck the "allow login to Terminal Services" box, will this keep the TS License server from validating the license and letting him in???
 
Sort by date Sort by votes
Sorry, I was typing while doing a bunch of oter things this morning. re-reading my post, it doesn't seem to clear.

I have clients who are connecting to our Citrix Server via the internet from home. These clients are running Program Neighborhood v7. The have an ICA connection created there that allows them to login to a published desktop.

These users have been accessing the system that way for awhile, and now, things have changed a bit and we want to limit who is able to login to Citrix and who isn't.

If we're running a Published Desktop, the end user has the Citrix Client installed, and they have a valid User ID and Password, I'm not sure how to prevent them from logging into Citrix remotely. They still use that same ID and Password to gain access to the Domain when they are in the office, so I can't just disable the account.

I was wondering if unchecking the "allow login to Terminal Services" box on the clients properties page (Terminal Services tab) under active directory would keep them from getting into Citrix. I didn't know if that would cause the user to not be able to get a TS Cal when they connect, and, therefore, no CAL, no Citrix... Or would this only effect RDP connections?

If that isn't the solution, is there some other way?

Thanks, hope thats more clear.
 
Upvote 0 Downvote
The fact that they use the PN client to connect, gives me the asumption that you allow direct connections from the internet to your local lan citrix server, which is not safe computing anyway.

Add a WI/CSG server to your DMZ.
Then filter out the bad guys via WI, by using
Stefan
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Sebastian42
  • Locked
  • Question
Possibly a timing problem
Replies
0
Views
610
Sebastian42
Sebastian42
VicM
  • Locked
  • Question
Win7 backup on Win11 Pro box not completing as it had in the past
Replies
2
Views
773
VicM
VicM
vgulielmus
  • Locked
  • Question
Windows 10 Pro - cannot use the start button
Replies
5
Views
811
DrB0b
DrB0b
P
  • Locked
  • Question
Recovery Disc failing to verify correct PC even though it is. 2006 Palvilion a1410y
Replies
0
Views
339
PalBadium
P
vgulielmus
  • Locked
  • Question
W10
Replies
0
Views
278
vgulielmus
vgulielmus

Part and Inventory Search

Sponsor

Back
Top