I am in the same situation (10 remote sites). What I've done is added Sonicwall TZ's at each site, and let them connect to the terminal server through the VPN. That allows me to control all applications locally as well as storage. If the clients die in the wild, we just ship a replacement. No need to reload apps or anything. GPO's are all enforced, just not on their local stations.
On Wed, Aug 12, 2009 at 4:17 PM, Tom Miller <[email protected]> wrote: > Hey folks: > > I have about 15 sites that have 2- 5 users/PCs that have "business class" > broadband (a bit faster than typical home access). Soon I plan to provide > each site a soho firewall and will have a VPN tunnel from each site to here > at HQ. > > I'd love to be able to add these PCs to our domain so I could enforce our > various GPOs at these locations. Has anyone done this? I already have > several tunnels like this at other locations but haven't added the PCs to > the domain. > > I'm not sure about the cross-tunnel authentication, but if it's not too > slow (no mapped drives or logon scripts), I'd do it. It would be nice to > have these users log into the domain as well. > > Comments, suggestions, words of wisdom? > > > > > Tom Miller > Engineer, Information Technology > Hampton-Newport News Community Services Board > 757-788-0528 > > Confidentiality Notice: This e-mail message, including attachments, is for > the sole use of the intended recipient(s) and may contain confidential and > privileged information. Any unauthorized review, use, disclosure, or > distribution is prohibited. If you are not the intended recipient, please > contact the sender by reply e-mail and destroy all copies of the original > message. > > > > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
