locked
How to connect client machines to remote server? RRS feed

  • Question

  • I have created a WinForms desktop application that is installed via ClickOnce from our network.  Currently, the application requires the client machine to be in the network or on the VPN.  We are experiencing issues with the VPN.  I would like to configure the server that our database lives on to allow our users to connect via the internet using there network username and password, just like Outlook does.  Can someone suggest a way to do this or perhaps provide some sample code?

    Thanks in advance!


    Ryan

    Tuesday, May 19, 2020 5:03 PM

Answers

  • Is there a way to securely access the database remotely using Azure AD credentials without the VPN?

    The answer is no.

    A VPN creates a secure communications conduit for the computer that is not behind the firewall on the protected LAN. The secure conduit is between the computer out there on the Internet that is in communications with a computer or computers on the protected LAN over the Internet. VPN uses an encrypted communications protocol that  protects the traffic between the computer out there  on the Internet that is connected to the LAN remotely and  is in communication with computers on the protected LAN. The VPN  prevents someone with a computer out there on the Internet from eavesdropping on the traffic of data between the computer on the Internet that is part of the LAN remotely and a computer on the protected LAN in a secure and encrypted communications manner.  

    https://www.cisco.com/c/en/us/products/security/vpn-endpoint-security-clients/what-is-vpn.html

    • Marked as answer by Ryan0827 Monday, June 1, 2020 3:47 PM
    Friday, May 29, 2020 7:03 PM

All replies

  • Hi Ryan0827,

    Thank you for posting here.

    According to your description, I have two questions to confirm with you.

    Could you show more details about your client and server or what you want to do?

    Could you provide some related code here?

    It will help us to analyze your problem and make a test.

    We are waiting for your update.

    Best Regards,

    Xingyu Zhao




    MSDN Community Support
    Please remember to click "Mark as Answer" the responses that resolved your issue, and to click "Unmark as Answer" if not. This can be beneficial to other community members reading this thread. If you have any compliments or complaints to MSDN Support, feel free to contact MSDNFSF@microsoft.com.


    Wednesday, May 20, 2020 8:38 AM
  • I have developed a Winforms application which communicates to a SQL Server database.  Currently, users must run the ClickOnce setup file located on the company network file share to install all the dll's of the application on there laptops.  The database is behind our firewall, thus users have to log into the VPN in order for the application to connect to the database.

    Our IT admin has concerns allowing users using the application outside the firewall (not of the VPN) to access the database for security reasons.  I was thinking we could authenticate users by leveraging Azure Active Directory.  Is there a way to securely access the database remotely using Azure AD credentials without the VPN?

    I do not have any code at this time.

    Thanks

    Ryan


    Ryan

    Friday, May 29, 2020 5:09 PM
  • Is there a way to securely access the database remotely using Azure AD credentials without the VPN?

    The answer is no.

    A VPN creates a secure communications conduit for the computer that is not behind the firewall on the protected LAN. The secure conduit is between the computer out there on the Internet that is in communications with a computer or computers on the protected LAN over the Internet. VPN uses an encrypted communications protocol that  protects the traffic between the computer out there  on the Internet that is connected to the LAN remotely and  is in communication with computers on the protected LAN. The VPN  prevents someone with a computer out there on the Internet from eavesdropping on the traffic of data between the computer on the Internet that is part of the LAN remotely and a computer on the protected LAN in a secure and encrypted communications manner.  

    https://www.cisco.com/c/en/us/products/security/vpn-endpoint-security-clients/what-is-vpn.html

    • Marked as answer by Ryan0827 Monday, June 1, 2020 3:47 PM
    Friday, May 29, 2020 7:03 PM
  • Hi Ryan0827,

    Thanks for your feedback.

    For more information about Azure AD, you can consider posting your question in Azure AD forum.

    Best Regards,

    Xingyu Zhao


    MSDN Community Support
    Please remember to click "Mark as Answer" the responses that resolved your issue, and to click "Unmark as Answer" if not. This can be beneficial to other community members reading this thread. If you have any compliments or complaints to MSDN Support, feel free to contact MSDNFSF@microsoft.com.

    Monday, June 1, 2020 6:54 AM
  • So how do web applications secure their servers?  They have to open access up to the public, why can't a Winforms application do so securely?

    Ryan

    Wednesday, June 3, 2020 11:50 AM
  • So how do web applications secure their servers?  They have to open access up to the public, why can't a Winforms application do so securely?

    Ryan

    Web applications usually use a n-tier architecture, they have frontend Web server that is open to the public running the frontend portion of the Web application, but there is also a backend server on the protected LAN that it communicates with, like a database server.. A Web solution is most likely using N-Tier, the Web program on the fontend Web server  that is open to the public can be communicating with a Web service on a Web server on the protected LAN, and the Web service communicates with the database.

    https://docs.microsoft.com/en-us/previous-versions/msp-n-p/ee658117(v=pandp.10)

    Sure, a Windows desktop solution can use n-tier too and all that's being talked about,  but Windows desktop developers don't do it 99.9% of the time mainly becuase they don't know how to do it.

    https://hackr.io/blog/web-application-architecture-definition-models-types-and-more

    https://stackify.com/n-tier-architecture/


    • Edited by DA924x Wednesday, June 3, 2020 7:45 PM
    Wednesday, June 3, 2020 7:39 PM