How to add encryption to Remote Desktop (RDP) network traffic.
Note: RDP clients older than the one provided with Windows XP are unable to talk to an RDP server that requires encryption. For the most part that will not be a problem, but it is important to understand, if you are using a Remote Desktop client from Windows 2000 to connect to a server that requires RDP encryption, you will not be able to connect.
The information provided in this article is for a server-side modification.By default, Remote Desktop clients will use the highest level of encryption supported by the server.
Open the Group Policy Microsoft Management Console (GPO MMC)
1. Click Start > Run, type mmc in the Open: box, and click OK
2. On the File menu, click Add/Remove Snap-in
3. In the Add/Remove Snap-in dialog box, click Add
4. In the Add Standalone Snap-in dialog box, select Group Policy, click Add, and then click Finish
5. Click Close in the Add Standalone Snap-in dialog box, and click OK in the Add/Remove Snap-in dialog box.
Modify the required encryption level for RDP
1. In the GPO MMC, expand Computer Configuration > Administrative Templates > Windows Components > Terminal Services
2. Select Encryption and Security
3. Double-click on "Set client connection encryption level" in the right pane
4. Select Enabled
5. In the drop-down labeled "Encryption label", select High Level
6. Click OK
7. Close the MMC
No comments:
Post a Comment