4.9 Remote Access Support Flashcards
Use remote access technologies
Which protocol uses port 23?
Telnet
What is the point of remote access protocols?
To allow a client to access a server or a network device remotely over the network
Which protocol uses port 22?
Secure Shell (SSH)
Which protocol uses port 3389?
Remote Desktop Protocol
What should Telnet never be used for?
Connecting to secure devices
How does Telnet work?
By sending text-based commands to remote devices
Which is the oldest network protocol (of all protocols covered)?
Telnet
What does SSH do?
Encrypts all traffic between the client and the server
What does RDP do?
Provides a graphical interface to connect to another computer over a network connection
How does Remote Desktop Gateway (RDG) provide a secure connection to a server?
By using the SSL/TLS protocols via RDP
What does a VPN do?
Establishes a secure connection between a client and a server over an untrusted public network
Where would you use Virtual Network Computing (VNC)?
On thin client architectures and VDI
Which protocol uses port 5900?
Virtual Network Computing
Virtual Desktop Infrastructure
Hosts a desktop environment on a centralised server
In-band management
Managing devices through the use of Telnet or SSH protocols over the local LAN
Out-of-band management
Connecting to and configuring different network devices using an alternate path or management network
Why would you use out-of-band over in-band management?
To prevent a regular user’s machine from connecting to the management interfaces of the administrator’s devices
Is in-band or out-of-band management more expensive for the organisation?
Out-of-band
Briefly explain the difference between in-band and out-of-band management
In: sending commands in an OS through a standard NVMe driver
Out: sending commands outside of the OS’s knowledge
Authentication
Confirms and validates a user’s identity
Authorisation
Gives the user proper permissions to access a resource
Password Authentication Protocol (PAP)
Sends usernames and passwords in plaintext for authentication
Challenge Handshake Authentication Protocol (CHAP)
Sends the client a random text string (the challenge), which is then encrypted using a password and sent back to the server
Extensible Authentication Protocol
Allows for more secure authentication methods; used on encrypted networks
What are some authentication methods that EAP supports?
- Token cards
- Smart cards
- Certificates
- OTP
- Public key encryption
What sort of server should you use EAP/TLS with?
A RADIUS or TACACS+ server
Remote Monitoring and Management
A centralized tool used by managed service providers to manage groups of users and workstations remotely
Microsoft Remote Assistance (MSRA)
Will allow a user to ask for help from a technician or a coworker by using a passcode-protected imitation file
List three other remote access tools
- Screen-sharing software
- Video conferencing software
- File transfer software
Give two types of desktop management software
- Unified endpoint management
- Endpoint detection and response
Which type of software allows for pushing deployment techniques?
EDR
Access control rules can be created by which remote software?
EDR
Give a simple explanation of UEM
It is the desktop/laptop version of MDM
