- My Forums
- Tiger Rant
- LSU Recruiting
- SEC Rant
- Saints Talk
- Pelicans Talk
- More Sports Board
- Fantasy Sports
- Golf Board
- Soccer Board
- O-T Lounge
- Tech Board
- Home/Garden Board
- Outdoor Board
- Health/Fitness Board
- Movie/TV Board
- Book Board
- Music Board
- Political Talk
- Money Talk
- Fark Board
- Gaming Board
- Travel Board
- Food/Drink Board
- Ticket Exchange
- TD Help Board
Customize My Forums- View All Forums
- Show Left Links
- Topic Sort Options
- Trending Topics
- Recent Topics
- Active Topics
Started By
Message
Thinking of turning remote desktop back on. How to 2FA?
Posted on 1/4/23 at 7:48 am
Posted on 1/4/23 at 7:48 am
I've had to work around not having access to my local network for a couple years after being gun shy after being hacked.
The only way I would trust it again is if I can easily enable 2FA.
Anyone done this? Can it be done without installing or purchasing additional software?
Note: for various reasons TeamViewer is not an option.
The only way I would trust it again is if I can easily enable 2FA.
Anyone done this? Can it be done without installing or purchasing additional software?
Note: for various reasons TeamViewer is not an option.
7
Posted on 1/4/23 at 7:57 am to CAD703X
Exposing Windows to the public network is NEVER a good idea. A better alternative would be to use OpenVPN to create a secure tunnel to your LAN. Most decent firewalls (pfSense, OpenSense,etc) have this ability built in by default and are easily set up.
Posted on 1/4/23 at 7:59 am to CAD703X
If you don't want to have to purchase something, I'd likely use something like a self signed SSL certificate to secure the RDP connection. It's not MFA really, but it's better than just having it exposed with no other security in place other than a password. VPN is another alternative.
This post was edited on 1/4/23 at 8:00 am
Posted on 1/4/23 at 8:17 am to dakarx
quote:
Exposing Windows to the public network is NEVER a good idea. A better alternative would be to use OpenVPN to create a secure tunnel to your LAN. Most decent firewalls (pfSense, OpenSense,etc) have this ability built in by default and are easily set up.
100%
Posted on 1/4/23 at 8:27 am to jdd48
If I plan to use my phone to connect, are those VPN options still viable?
I may use a PC occasionally to log in but primarily I will be using an Android phone to log in and restart services, etc.
I may use a PC occasionally to log in but primarily I will be using an Android phone to log in and restart services, etc.
Posted on 1/4/23 at 8:45 am to CAD703X
I use SSH tunnel, if i need to do from phone i spin up an azure vm that has the ssh key on it. I would never trust RDP
Posted on 1/4/23 at 9:36 am to CAD703X
quote:
If I plan to use my phone to connect, are those VPN options still viable?
Definately! Wife uses it continuously to connect to the CCTV systems from remote using her android phone (they are blocked from talking outside of the local networks), when I'm at the office i'm able to connect via my phone or my personal laptop (or both if i need a hotspot) to access my home lab networks.
This post was edited on 1/4/23 at 9:37 am
Posted on 1/4/23 at 10:06 am to CAD703X
OpenVPN will work for your phone as long as it's an android. Last I checked there was no apple openVPN app.
If you set up a home VPN you will need to set up a dynamic DNS as well.
If you want to connect to a computer try chrome RDP. It uses your Google login which already has 2FA if you set it up.
If you set up a home VPN you will need to set up a dynamic DNS as well.
If you want to connect to a computer try chrome RDP. It uses your Google login which already has 2FA if you set it up.
Posted on 1/4/23 at 10:09 am to CAD703X
Posted on 1/4/23 at 10:59 am to mchias1
quote:
Last I checked there was no apple openVPN app.
I have openvpn on my macbook
Posted on 1/4/23 at 11:20 am to mchias1
quote:
If you want to connect to a computer try chrome RDP. It uses your Google login which already has 2FA if you set it up.
This is what I do. It's not great but they are constantly adding features to make it more friendly. I use it often from a PC but have logged in on my phone to do something quick plenty of times.
Posted on 1/5/23 at 10:02 pm to CAD703X
quote:
for various reasons TeamViewer is not an option.
As someone who uses team viewer, what's the knock?
Posted on 1/6/23 at 6:16 am to HailToTheChiz
Vulnerabilities and not knowing who could potentially expose/exploit a connection/data
Posted on 1/6/23 at 4:09 pm to HailToTheChiz
quote:
As someone who uses team viewer, what's the knock?
Team Viewer MUST talk to a 3rd party server on the public internet to function. If you can connect to it, others can as well.
Posted on 1/10/23 at 3:15 pm to CAD703X
You need VPN that directly connects to your firewall.
I have a Palo Alto Firewall and use Global Protect as my VPN client. I have Global Protect setup with Azure Active Directory single sign on (SSO) integration and use the Microsoft Authenticator app for my MFA.
I have a Palo Alto Firewall and use Global Protect as my VPN client. I have Global Protect setup with Azure Active Directory single sign on (SSO) integration and use the Microsoft Authenticator app for my MFA.
Posted on 1/11/23 at 7:19 pm to td1
quote:
Tailscale
Bingo, this is what we use to access my Blue Iris camera server remotely. Almost an instant connection, works great.
Posted on 1/16/23 at 1:32 pm to OSoBad
THANK YOU FOR TAILSCALE!!
Loving it so far (and its free).
Quick question; how do you share files using tailscale? Is there a best practice to move files between machines?
Posted on 1/19/23 at 7:44 am to CAD703X
DUO supports RDP. Like $2 a month per account.
Posted on 1/19/23 at 8:53 am to CAD703X
quote:
Quick question; how do you share files using tailscale? Is there a best practice to move files between machines?
Any way you would normally share files between two computers on your local network should work normally.
I have previously tested tailscale some and it seemed to work great. I stayed with using the wireguard app though because I can automate the vpn connection going up or down based on conditions on our android phones but couldnt get that to work with tailscale.
Page 1 of 1
Popular
Back to top
Follow TigerDroppings for LSU Football News