"Glen Johnson" <[email protected]> wrote on 12/23/2008 01:24:28 PM: > We have a cisco asa but and my understanding could be wrong here, but if > I install the VPN client on a home computer, the user starts the vpn > client and connects, isn't their home computer now connected to my > internal LAN? > If their home computer is infected, it could possibly infect computers > here at the school? > I'm sure there are ways to secure the VPN but I'm working with faculty > here and trying to keep it as simple as possible.
Kidaro (or what used to be Kidaro): http://www.kidaro.com/ It's now Microsoft Enterprise Desktop Virtualization (MEDV) and part of MDOP - If you are on Software Assurance it's a great deal (and if you are education, practically free). http://www.microsoft.com/windows/enterprise/products/med-v.aspx That is the worst page trying to sell a product that I have ever seen. It tells you absolutely nothing useful - sigh.... Basically MEDV (yet another horrid name) is a managed Virtual PC instance. You hand your end users a DVD with an installer, the Kidaro client and an encrypted VPC image. They can install it at home themselves. The Kidaro client securely manages the VPC image. You have total control over the image, can update it centrally, etc. You can configure the image to connect to your servers via VPN automatically even. You can also control if the users can copy/paste between the VPC image (basically your environment) or their home computer. Same for printing. You can lock it down (if need be) so that the only thing they can do remotely is take a screen shot of the VPC window. Bottom line - you get a totally managed environment that you can control and enforce policy on, without messing with their computer or programs on their computer. It's the slickest remote access solution I have seen. MS bought them because you can also run applications seamlessly without showing the VPC desktop - think Citrix application publishing without the hassle of running a Citrix farm. Got one or two stubborn applications that won't run on Vista? Run them seamlessly on XP via Kidaro - at least that's the MS sales pitch. I still think it's better as a remote access solution :) Eric Eskam =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= The contents of this message are mine personally and do not reflect any position of the U.S. Government "The human mind treats a new idea the same way the body treats a strange protein; it rejects it." - P. B. Medawar ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
