I’ve been trying to think of the best way to provide remote access to a FPMI project. As usual, we have the server on an intranet, but the client wants to be able to access it from anywhere. I’ve checked the VPN vs SSL thread for ideas/info as well. Below I’ve listed the current options and I’m hoping to get some feedback on them and some insight into what other people have done. Here are the possibilities I’ve considered so far:
-Citrix XenApp: The client already has this deployed, and running a java applet from it might be possible. I’m leaning away from this because it seems like a lot of work to get going.
-VPN: Theoretically simple and easy, but I’ve been told that their current VPN is flaky at best and that it shouldn’t be used.
-Port forwarding/ TLS/SSL: Probably the simplest to get going. My concern however is that the JNLP file will be accessible to everyone (since the authentication is made after launching the project). A colleague suggested crafting a custom launch page that authenticates user before giving the JNLP which sounds like it might be a nice idea, but I don’t know how without PHP.
-TS RemoteApp: New thing on Server 2008 that supposedly allows clients to run applications remotely. I haven’t seen or played with it enough to know if it is usable, but it’s an option at this point.
Does anyone have a favorite way of securely allowing remote access to FPMI? I think I’d like to go the SSL route if I could get some frontline authentication going, but I don’t really have enough info to make a decision yet.