Jacek Starzycki
Usługi Informatyczne

TSX Gateway

Introduction

TSX Gateway is heavily secured remote connection solution. The RDP connection is transported via HTTPS established channel and every. Through usage of this traffic rediraction it is possible to create secure VPN from client to the TSX Gateway and than back to the desired RDP server.


The remote server can be any PC.

 

Servers

 

multiple connection:

  • Thinstuff XP/VS Server
  • Microsoft Remote Desktop Session Host (RDSH/Terminal Server)

single RDP connection:

  • Thinstuff Remote Desktop Virtualisation Host (RDVH)
  • Thinstuff Remote Desktop Host (RDH)
  • Microsoft Remote Desktop Virtualization Host (RDVH)

 

Capabilities

  • Compatible with Microsoft TS Gatewayem
  • Not limited to Microsoft solutions – works with any server or client operating system
  • Compatible with every RDP protocol (version 6 or latest)
  • Two step authentication (TSX Gateway and Host RDP)
  • Possibility of SSO authentication to both steps (single login)
  • Fully compliant with Microsoft Active Directory
  • Secure RDP connection - ciphered through usage of HTTPS (port 443)
  • Extensive capabilities of security for outside world protection
  • Built in connection monitoring and maintenance tools - TSX Gateway Manager
  • Extemsive loging mechanisms
  • Unlimited number of users

Security

The set of policies setting the user perimisions for TSX Gateway:

CAP: Connection Authorization Policies

  • Definition of a group or single resources (user or station) priviliged for TSX Gatewayem connections
  • Access controll on per user basis

RAPs: Resource Authorization Policies

  • Definition of a group ro a single resource (user or station) priviliged for chosen RDP connection
  • Acccess controll on per port basis (e.g 3389)

Event tracking

  • connections from RDP hosts and from TSX Gateway
  • authentication from RDP hosts and TSX Gateway

Requirements

RDP version 6.0 or higher

Supported opperating systems

  • Windows XP, Vista, 7, 8
  • Windows Server 2003, 2008, 2008 R2, 2012

Certification

  • SSL Certificat of trust of both client and server
  • Complient with (CN) DNS certificate for RDP and TSX Gateway connection initialization