http://blogs.msdn.com/b/rds/archive/2008/03/12/how-msit-uses-terminal-services-as-a-scalable-remote-access-solution.aspxThe MSIT pilot project of Windows Server 2008 Terminal Services was so successful that Microsoft IT went on to test the scalability and performance into the production environment. The environment acts as a SSL-based remote access solution and MSIT wasen-USTelligent Evolution Platform Developer Build (Build: 5.6.50428.7875)http://blogs.msdn.com/b/rds/archive/2008/03/12/how-msit-uses-terminal-services-as-a-scalable-remote-access-solution.aspx#8415383Mon, 21 Apr 2008 23:46:23 GMT91d46819-8472-40ad-a661-2c78acb4018c:8415383ExMsft<p>@markbr: MSIT uses smartcards. &nbsp;This would explain why smartcard is an available authentication option out-of-the-box. &nbsp;(Smartcards require PINs so they still have the &quot;something you know&quot; component of two-factor.)</p> <p>See <a rel="nofollow" target="_new" href="http://technet2.microsoft.com/windowsserver2008/en/library/9da3742f-699d-4476-b050-c50aa14aaf081033.mspx?mfr=true">http://technet2.microsoft.com/windowsserver2008/en/library/9da3742f-699d-4476-b050-c50aa14aaf081033.mspx?mfr=true</a></p> <div style="clear:both;"></div><img src="http://blogs.msdn.com/aggbug.aspx?PostID=8415383" width="1" height="1">http://blogs.msdn.com/b/rds/archive/2008/03/12/how-msit-uses-terminal-services-as-a-scalable-remote-access-solution.aspx#8342067Fri, 28 Mar 2008 19:58:16 GMT91d46819-8472-40ad-a661-2c78acb4018c:8342067termserv<p>@paul:</p> <p>You can modify web.config to make the Remote Desktops tab use TS Gateway. &nbsp;Look for the DefaultTSGateway and GatewayCredentialsSource settings.</p> <p>Rob</p> <div style="clear:both;"></div><img src="http://blogs.msdn.com/aggbug.aspx?PostID=8342067" width="1" height="1">http://blogs.msdn.com/b/rds/archive/2008/03/12/how-msit-uses-terminal-services-as-a-scalable-remote-access-solution.aspx#8341502Fri, 28 Mar 2008 14:59:43 GMT91d46819-8472-40ad-a661-2c78acb4018c:8341502paul<p>Yes I'm interested in RSA integration as well?</p> <p>Also it seems odd to have TSWeb remoteapps use the TSGateway, but when you click over to the Remote Desktop tab and try connect to a server/workstation it doesn't use the TSGateway?</p> <p>We have had to manually had an .rdp shortcut as a remoteapp - which isn't a great workaround.</p> <div style="clear:both;"></div><img src="http://blogs.msdn.com/aggbug.aspx?PostID=8341502" width="1" height="1">http://blogs.msdn.com/b/rds/archive/2008/03/12/how-msit-uses-terminal-services-as-a-scalable-remote-access-solution.aspx#8207499Fri, 14 Mar 2008 20:50:58 GMT91d46819-8472-40ad-a661-2c78acb4018c:8207499markbr<p>was a two fold authentication such as SecurID from RSA or RAS services used for Internet security? </p> <p>If so, are there any white papers coming forth on such a thing?</p> <p>Thanks.</p> <div style="clear:both;"></div><img src="http://blogs.msdn.com/aggbug.aspx?PostID=8207499" width="1" height="1">