WS2008: Frontside Authentication and SSO

Windows Server 2008: Frontside Authentication and SSO » D' Technology Weblog: Technology, Blogging, Tips, Tricks, Computer, Hardware, Software, Tutorials, Internet, Web, Gadgets, Fashion, LifeStyle, Entertainment, News and more by Deepak Gupta

Fri, 22 Feb 2008 00:39:07 GMT

PingBack from http://www.ditii.com/2008/02/21/windows-server-2008-frontside-authentication-and-sso/

re: WS2008: Frontside Authentication and SSO

SJB — Fri, 22 Feb 2008 02:29:05 GMT

a little confused about the 3rd line in the connection table (client: Windows Vista, Windows XP, Windows Server 2003, Windows Server 2008 : target : Windows XP, Windows Server 2003, Windows 2000 prompt: Always at TS Server Side )

RDP 6.x on XP to Windows 2003 Server always causes a Frontside cred prompt, whereas that table implies a server side? also, if you get the creds wrong, it populates the username as servername\user, not domain\user; so to correct it you have to edit the username field.

(hmm that was hard to explain, oh well).

re: WS2008: Frontside Authentication and SSO

RCG — Wed, 14 May 2008 16:00:54 GMT

Question: What happens if you fat finger the IP address?

Do your credentials get handed over to the WRONG server to be authenticated? Only to be rejected as "you're not an authorized user"?

And doesn't this add the potential, for someone to be LISTENING for these types of connections, and to record user credentials... to later attack the credentials and use them against another machine?

ie. I mean to connect to 192.168.1.10, instead I type 193.168.1.10 .... doesn't then, my user and pass get sent to an invalid machine/server? And can't that machine be recording access attempts and capture user/pass info?