Remote administration means that administration of the Screen is conducted on an Administration Station, which is a separate machine from the Screen, as shown in Figure 1-2. Remote administration uses encrypted communication between the Screen and Administration Station to protect access and to limit the management of a Screen to an authorized Administration Station. The data which the administrator sees is protected, so the information about the security policy in place on the Screen can not be obtained by others.
The Screen may be both headless and keyboardless, and communicates with the Administration Station through a TCP/IP interface that need not be exposed to the Internet (although it may be exposed to the local network, depending on the topology you use, and your choice of operating in stealth or routing mode).