You have a server that runs the Terminal Services Gateway (TS Gateway) role service. Users need to
connect remotely through the gateway to desktop computers located in their offices. computers in
their offices. You need to enable the users to connect to the TS Gateway. What should you do?
A.
Add the Remote1 security group to the local remote desktop users group on the TS Gateway
server.
B.
Create a client authorization policy. Add the Remote1 security group and enable Device
redirection.
C.
Create a resource authorization policy. Add the Remote1 security group and enable Users to
connect to any resource.
D.
Create a Group Policy object and enable the Set TS Gateway authentication method properties to
Ask for credentials, use Basic protocol. Apply the policy to the TS Gateway server.
Explanation:
To enable the remote users belonging to RemoteUsersGrp1 to connect to the TS Gateway, you need
to create a client authorization policy. Add the RemoteUsersGrp1 security group and enable Device
redirection. A connection authorization policy (CAP) allows you to control who can connect to the
Terminal Server through the Terminal Services Gateway. The Device Redirection gives you the option
of disabling redirection for trusted a remote client devices. The tab contains a series of checkboxes
that you can use to disable things like disk drives, the Windows clipboard, printers, serial ports, and
even plug and play devices. Reference: Configuring the Windows Server 2008 Terminal Services
Gateway (Part 2)/
Create a Terminal Services Gateway CAP
http://www.windowsecurity.com/articles/Configuring-Windows-Server-2008-Terminal- ServicesGateway-Part2.html
Reference: An Overview of Longhorn Server’s Terminal Service Gateway (Part 4)
http://www.msterminalservices.org/articles/Overview-Longhorn-Servers-Terminal-ServiceGateway-Part4.html