1. What is Remote Desktop?
Remote Desktop is a service launched by Microsoft Corporation to facilitate network administrators to manage and maintain servers . Introduced from the Windows 2000 server version, the network administrator uses the remote desktop connection program to connect to any computer on the network with the remote desktop control function enabled, just like operating the computer by himself, running programs, maintaining databases, etc. The remote desktop is similar to the early telnet in a sense . It can hand over work such as program running to the server, and what is returned to the remote control computer is only the image, the movement track of the mouse and keyboard.
2. What is Terminal Services?
Terminal service only exists in windows 2000 server version and 2003, and this component does not exist in other systems . Terminal service is not installed in the operating system by default, it can be installed by adding and removing windows components when needed. The role of terminal services is to facilitate multiple users to operate the server with terminal services enabled in the network. All users operate on the same server, and all operations and calculations are placed on the server.
3. How to open remote desktop:
The method of enabling the remote desktop function is very simple, and we have introduced it many times before. In Windows 2000 server and 2003, just click the right mouse button on the desktop "My Computer" and select "Properties", find the "Remote" tab in the pop-up property setting window, and then click "Allow users to remotely connect to this Computer" can be ticked. (As shown in Figure 1) After enabling this function, other computers in the network can control and access the server through "Program->Accessory->Communication->Remote Desktop Connection".
figure 1
4. How to enable Terminal Services:
It is also mentioned above that Terminal Services is not installed in the system by default, so we have to install it manually. This article takes WINDOWS 2003 as an example.
Step 1: Install Terminal Services through "Start->Control Panel->Add/Remove Programs" on the taskbar.
figure 2
Step 2: Select Add and Remove Windows Components on the left side of the Add/Remove Programs window. Find the two items of terminal server and terminal server authorization in the component. Before installation, the system will give a configuration warning prompt "IE enhanced security configuration will greatly restrict users on the terminal server. Do you want to restore the low security configuration?" We choose "Yes". That's it. Because the security level of the Windows 2003 browser is set too high by default, it is easy to restrict the permissions of terminal service users.
image 3
Step 3: After selecting the terminal server and terminal server authorization, you can directly click "Next" to install.
Figure 4
The fourth step: the introduction of the terminal server installation program will appear below, which is very important. The content is as follows-this option installs a terminal server, he can configure this computer to allow multiple users to run programs at the same time. By default only the local Administrators group can connect to this terminal server. You need to add the user account, that is, the user with non-administrator rights, to the local remote desktop user group before the user can connect to the terminal server. If you only need to use the remote desktop for management, please do not install the terminal server, the remote desktop for management has been enabled by default. Licensing: To continue using Terminal Server after the 120-day grace period starting today, you must install a server running Terminal Server Licensing.
Figure 5
Step 5: Next, the instructor selects the operating mode of the terminal server. There are two security modes available to us, "Complete Security Mode" and "Loose Security Mode". The former can provide the most secure environment for terminal servers, with the best security, but because of security, there are many restrictions, and some applications designed for previous operating platforms may not run normally. If you use this security mode for terminal server operations, if you find that it is too restrictive in practice, you can modify it to "loose security mode". The relaxed security mode has a lower security level than the full security mode, but it is much less restrictive. Users can access key registry and system file locations, and use this security mode when running some applications designed for previous versions. Which security mode to use needs to be selected according to the actual work needs.
Figure 6
Step 6: The next step is to set up the terminal server installation program. There are three licensing methods available to us. One is to use the license server. Generally speaking, the company does not have a dedicated license server. The second is to use the automatic search license server, which will automatically search the license server in the network, which is more suitable for network applications where the license server is not fixed. The last one is "I will designate a license server within 120 days", which is our most common choice, that is, use terminal service 120 first, then purchase a license from Microsoft, and establish a corresponding license server to achieve the purpose of authorization .
Figure 7
Step 7: Then select the server authorization mode. Before purchasing the authorization license from Microsoft, these options have no specific meaning. The "per-device authorization mode" is one authorization per device. on a device with an authorized license. "Per-user authorization mode" is to purchase licenses for users, and how many users (accounts) need to purchase the number of user licenses (CAL) to use terminal services.
Figure 8
Step 8: Then set the location to install the license server database, we can keep the default windows\system32\lserver, of course, you can also use the "Browse" button to change to other directories.
Figure 9
Step Nine: Install Terminal Services components.
Figure 10
Step 10: Copy the corresponding files to the local hard disk to complete the installation of windows components
Figure 11
Step 11: After restarting, we can see the terminal service manager, terminal service configuration, terminal server authorization and other programs on the desktop "Start->Administrative Tools". This shows that we have successfully installed the Terminal Services component.
5. The difference and connection between Remote Desktop and Terminal Services:
First of all, let's take a look at the similarities. They are all components of the windows system, and they are all developed by Microsoft. Through these two components, the user can realize the function of controlling the server at the other end of the network. Operating the server and running the program is as simple as operating your own local computer, and the speed is also very fast. However, the difference between these two components is also very obvious——
(1) Remote Terminal Services allows multiple clients to log in to the server at the same time. Whether it is device authorization or user authorization, a CAL client access authorization certificate is required. This certificate needs to be purchased from Microsoft; and remote desktop management is only provided to operators and users. A graphical interface for the administrator to remotely enter the server for management (from the interface, it is the same as the remote terminal service), and the remote desktop does not require a CAL license certificate.
(2) The remote desktop is completely free, while the terminal service has only a 120-day usage period. After this free usage period, you need to purchase a license.
(3) The remote desktop only allows two administrators to log in at most, while the terminal service has no limit, as long as you have purchased enough licenses, you can log in as many users as you want to a server at the same time.
(4) Remote desktop can only allow users with administrator rights to log in, but terminal services does not have this restriction. Users with any rights can remotely control the server through terminal services, but the rights after login are still consistent with their own rights.
Summary: After understanding the opening methods of remote desktop and terminal services and the similarities and differences, we need to choose according to the actual needs of the company. Some readers may say that since remote desktop is free, and terminal services need to purchase a license, wouldn’t it be enough to just use remote desktop? In fact, it has been introduced in the fourth point of the difference. Remote desktop can only allow administrators to Users with normal permissions can use it, and accounts with general permissions cannot log in. Terminal access does not have this restriction; and remote desktop can only allow two people to log in to the operating server at the same time, and terminal access does not have this restriction . These two differences determine that terminal services must be used when the server needs more than 2 people at the same time and user management with non-administrator rights is required.
Reposted from: The whole process of diagrams will teach you how to enable Windows Terminal Services | Service