3
0
The Super User question Is windows remote desktop secure? describes Network Level Authentication (NLA) and how to configure it in Windows Server 2008. Unfortunately, the GUI option to configure NLA is gone in Windows Server 2012.
How do you require NLA or limit RDP clients so that only new, higher security client connections can be established?
Michael Barber
Posted 2015-08-19T17:10:26.733
Reputation: 33
1
According to the Windows Server 2012 Group Policy Reference guide:
On Windows Server 2012 and Windows 8, Network Level Authentication is enforced by default.
While the option to enable or disable NLA has been removed from the GUI interface, it's still configurable via the Group Policy setting Require user authentication for remote connections by using Network Level Authentication found at Computer\Policies\Windows Components\Remote Desktop Services\Remote Desktop Session Host\Security. This setting must be applied to the server running the RDSH role.
I say Reinstate Monica
Posted 2015-08-19T17:10:26.733
Reputation: 21 477
1Well if its the default....than I don't have to worry about it. ;) Thanks – Michael Barber – 2015-08-21T22:23:20.487
Why I keep hearing another version that NLA is required since Windows 2008? – Sajuuk – 2019-05-27T09:35:47.983
1
It wasn't on for all of our servers. This might be because the server manager had decided to turn it off by default (presumably for the legions of pre-Windows XP SP3 users?!).
As Philippe pointed out - the dialog you want is shown in the Petri article.
Ian Grainger
Posted 2015-08-19T17:10:26.733
Reputation: 196
Do you have the RD Session Host role enabled? – Ƭᴇcʜιᴇ007 – 2015-08-19T17:21:52.940
You can use Powershell or the GUI (using the Server Manager). It's all explained on the Petri website
– Philippe Ferrucci – 2016-08-02T07:49:47.740