Chapter 16: Implementing Security for Terminal Services

Chapter 16

Implementing Security for Terminal Services

Terminal Services in Microsoft Windows 2000 permits remote clients to execute programs on a remote server by using the Windows 2000 desktop. When a user connects to a terminal server via a Terminal Services client, keyboard and mouse actions are transmitted from the Terminal Services client to the terminal server. The responses of the terminal server, which appear as changes in the display, are sent back to the Terminal Services client.

All applications execute on the terminal server, and performance is dependent upon the hardware at the terminal server. The Terminal Services client only requires sufficient hardware to run the Terminal Services client.

Terminal Services can be installed on a computer running Windows 2000 Server, Windows 2000 Advanced Server, or Windows 2000 Datacenter Server by using the Add/Remote Windows Components applet in Control Panel. It is also possible to connect to a Microsoft Windows XP client by using a Terminal Services client if the Remote Desktop option is enabled in the Remote tab of the computer s System applet in Control Panel.

A Microsoft Windows XP client with the Remote Desktop option enabled can support only a single client connection, regardless of whether the connection is made by the locally logged-on user or by using a Terminal Services client. If a user is logged on at a Windows XP client computer, he is logged off when a Terminal Services client connects. The same is true if a local user logs on while a Terminal Services client is connected.