We have one of our older clients looking to move to the cloud. They do not want subscription pricing they simply want to move two GP related servers out to the cloud. One server is the GP server which services 50 clients and the other is their analysis server which runs all their cubes.I am suggesting when they move to the cloud to have a third server which will be an application server which will house the GP client. This way no one ever connects directly to the GP server. I can obtain all the server specifications from their current servers. The questions are:
1) From a security standpoint what is the most secure way to connect to the application server? RDP or VPN or some other way?
2) What type of secure connection should be established between the application server and the GP server?
3) Given that this will be a terminal server type environment what steps can we take to avoid issues with printers, monitor resolutions and other issues?