Remote Access
Remote network access is the infrastructure, protocols, and software that allow a host to join a local network from a physically remote location, or that allow a session on a host to be established over a network.
- user’s device does not make a direct cabled or wireless connection to the network
- connection occurs over or through an intermediate network
- usually public WAN
- most remote network access is implemented as a virtual private network (VPN)
Administering Remote Access
- Only authorized users who have successfully authenticated should be allowed access
- more difficult to ensure the security of remote workstations and servers
- greater chance of remote login exploits
- create remote access server (RAS)
- have documentation describing:
- uses of the service
- security risks and countermeasures
- authorized users of the service
- have authorization to run the service from the network manager
- remote access policy implements the measures
- typical policy restrictions:
- Restricting access to defined users or groups
- Restricting access to defined times of day or particular days of the week
- Restricting privileges on the local network
- Logging and auditing access logons and attempted logons
- typical policy restrictions:
- management plan ensures that RASs and other hardware are kept up to date
- secure admin access with strong authentication
- have documentation describing: