6. Your server certificate information should now be displayed in the SSL
Certificate tab where it previously said ???Not available.??? Click OK to close the
dialog box.
Figure 9-18. TS Gateway server SSL Certificate properties
309 Chapter 9: Terminal Services
Configuring Connection Authorization Policies
Connection Authorization Policies define who or what can connect to the TS Gateway. For
example, you can create policies that require a user to be a member of a certain AD Security
Group or policies that require that a computer belong to a particular domain. This is
your opportunity to limit who gets to connect through your gateway. In this example, we
create a basic CAP that allows users that are part of the Domain Users group to connect.
NOTE You can create multiple CAPs on your TS Gateway. They will be evaluated in order and
access will be granted as soon as a match is made.
1. Choose Start | Administrative Tools | Terminal Services | TS Gateway
Manager.
2. Expand the node on the navigational tree representing your TS Gateway server.
3. Expand the Authorization Policies folder and select Connection Authorization
Policy.
4. Click Create New Policy from the Actions pane, and then select Wizard.
5. Select Create Only a TS CAP, and then click Next (Figure 9-19).
Figure 9-19. Creating new authorization policies for TS Gateway
310 Microsoft Windows Server 2008 Administration
6.
Pages:
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349