Juniper SSL VPN – Access your Work Desktop PC through RDP

The estimated reading time for this post is 0 minutes

RDP to your Work Desktop PC –
using Juniper MAG

You can access your desktop via a neat feature – using LDAP multi-valued attribute to create dynamic terminal services bookmarks

SUMMARY:
We can use LDAP Multi-valued attribute to create dynamic bookmarks based on a returned number of values. It is represented with where, if used as a variable in terminal services bookmarks, it will create a bookmark for each returned value.

PROBLEM OR GOAL:
Administrators can define the terminal servers/desktops that users can access by defining the servers/desktops under the LDAP Multi-valued attribute. For example, for the attribute otherIpPhone, we can use any mv attribute.

CAUSE:

SOLUTION:
Configuration on the Windows server and SA/MAG
On the Server Define the terminal servers/desktops under the user properties:
RDP-to-MAG-1

On the SA/MAG
1. Create an LDAP server instance.
2. Under the REALM role mapping, add the mv user attribute and do the role mapping as shown below :
RDP-to-MAG-2
3. Create the Terminal Services Resource Profile.
RDP-to-MAG-3
4. Define the bookmark:
RDP-to-MAG-4
5. User will see the defined values on the home page:
RDP-to-MAG-5