Comment utiliser IIS plutôt que les serveurs Web par défaut de Terminal Service Plus

Pré-requis

Puede ser una buena idea que Update Terminal Service Plus to be sure that you get the latest TSplus programs.

1. Configuración de IIS

Install IIS with the following modules: CGI, ISAPI Extensions and ISAPI Filters.

Screenshot 0-1 - Configuración del puerto IIS:

Access the IIS management console, expand the list below your server name, then expand the “Sites” menu and right-click on “Default Web Site” and click on “Edit Bindings”:

Screenshot 1-1 Click on “http” and “Edit”. Change the port to 81 and click Ok, and then click Close:

Screenshot 1-2

Disable the 443 port or change this port for another free port.

Then, restart the IIS Manager.

2. Crear directorio virtual para CGI

NB: Alle Dateien aus dem Standard-Webstammverzeichnis (C:\Program Files (x86)\TSplus\Clients\www) werden nicht kopiert, wenn das Verzeichnis des Webstammverzeichnisses geändert wird. Sie müssen diese manuell überprüfen und kopieren, wenn Sie auf den IIS-Webserver migrieren.

In der linken Menüleiste erweitern Sie das Menü unter Ihrem Server, dann „Sites“, und klicken Sie mit der rechten Maustaste auf Ihre Site, um ein neues „virtuelles Verzeichnis“ hinzuzufügen, wie im Bild unten gezeigt.

Screenshot 2-1 En la ventana que se abrirá, complete de la siguiente manera:

Alias: cgi-bin

Physical path: C:\Program Files(x86)\TSplus\Clients\www\cgi-bin

Screenshot 2-2 Then click “OK” and you will see that the “cgi-bin” virtual directory has been added to your IIS Web site. Now, right-click this “cgi-bin” virtual directory and click on “Convert to Application”. Click “OK” and accept the default settings.

Screenshot 2-3 Screenshot 2-4 Then select the “Handler Mappings” icon for this folder on the right side of the Manager window:

Screenshot 2-5 From the list of Handler Mappings, double click on “CGI-exe”. Then, search the hb.exe executable from the Executable property box and click OK.

Screenshot 2-8 A prompt for confirmation appears. Click “OK” to allow this ISAPI extension.

Screenshot 2-9 Now click on "Edit Feature Permissions":

Screenshot 2-6 Check the “Execute” checkbox and click OK:

Screenshot 2-7 Back to the “CGI-bin” Home, click on “CGI” to open the CGI properties:

Screenshot 2-9 Change the value of “Use New Console For Each Invocation” to “True”. Then, click “Apply” to save the changes.

Screenshot 2-9 ### 3. Configurer les autorisations d'extension CGI

Now, the last step is to allow the CGI extension to run on the server. Click on the “ISAPI and CGI Restrictions” icon. This can be found by clicking on the machine name in the menu on the left side of the window.

Screenshot 2-3 On the “ISAPI and CGI Restrictions” page, click “Add …” on the right side of the window. Now specify the full path to the “hb.exe” file hosted in the TSplus folder. Be sure to check the “Allow extension path to execute” option, as Illustrate the following images:

Screenshot 3-1 Screenshot 3-2 Screenshot 3-3

Make sure that in the CGI section of your server, “Default Web Site” and “cgi-bin” the setting “Impersonate User” is set to “True”.

Screenshot 3-3

Give full permission to user “IUSR” in the directory “C:\Program Files (x86)\TSplus\Clients\www\cgi-bin”

Give full permission to user “IUSR” in the directory “C:\Program Files (x86)\TSplus\Clients\webserver\twofa”

4. Ajouter des types MIME dans IIS

Open a command prompt as an administrator and run the following commands:

%SystemRoot%\system32\inetsrv\appcmd set config /section:staticContent /+[fileExtension=’.dat’,mimeType=‘text/plain’]

%SystemRoot%\system32\inetsrv\appcmd set config /section:staticContent /+[fileExtension=’.‘,mimeType=‘text/plain’]

Reiniciar IIS.

5. Configurer les autorisations de répertoire IIS

Give full permission to the group “Everyone” in the directory “C:\inetpub\wwwroot”

6. Configurer TSplus

Go to the Web Server tab of the AdminTool, then choose the “Use a Different HTTP server” option:

Screenshot 6-1 Then, in the same window, click on “Select a new Web Server root path”, and put the path of the IIS directory, which should be something like: “C: \ inetpub \ wwwroot”. Now click on “Save and Restart the AdminTool”.

Screenshot 6-2

Las siguientes mensajes aparecerán:

Screenshot 6-3 Screenshot 6-4 Wait. The Admintool will be closed automatically. Then open the Admintool again and click on the Web tile.

Finalmente, reinicie los servidores web:

Screenshot 6-6 ### 7. Test with local host

Avertissement Utilisez un compte utilisateur différent.

If you try with your current user account from your own RDP session to the server, then you will be disconnected and not be able to reconnect.

Screenshot 7-1 ### Actions supplémentaires :

Configurer RemoteApp

The “remoteapp” folder in the IIS web root (c:\inetpub\www\cgi-bin\remoteapp) must also have full permissions to the IUSR user, otherwise a 704 error will appear when attempting to use RemoteApp.

Configure 2FA

On a fresh install where 2FA has never been enabled, there is no folder named
C:\Program Files (x86)\TSplus\Clients\webserver\twofa, or the twofactorauth.ini file.

Es necesario:

activate 2FA in AdminTool to create this folder and this .ini file
then deactivate 2FA
then apply IUSR user permissions to the newly created twofa folder.

Failure to complete this step (even if you don’t intend to use 2FA) will prevent users from logging in with an error message stating that the credentials are invalid.