ipsec as unique access control

there are several developers using same server under same credentials (very convenient) under rdp. I want to be able to give and revoke access w/o changing those creds (iis apps running etc) I understand from research that ipsec can solve that. We install it with different keys on each programmer’s computer and configure server firewall/cisco gateway To allow rdp over ipsec only So 1. We know whose session it is and 2. If somebody leaves we just disable his or her access. So single account on server is ok as long as we control who gets there 1. please confirm my findings 2. please give me a pointer to some article where I can find step by step high level instructions say we have 10 user computers and data center network like server1, server2 What do we do to implement ipsec and force rdp over ipsec only!

will it work as is after upgrade if not what to do

I need to upgrade any pitfalls? all i have are IIS .net web apps somebody told me will be probs with web.config is there elegant way to take care of it?