• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1111
  • Last Modified:

FIPS on RDP (encryption on RDP)

Hi Experts,
One of my customers requested to enable encryption on the RDP.  For this he would like to enable the group policy option: “Set client connection encryption level” from Not configured to FIPS. (See attached screenshot for more information).
My question is this: is this configuration affect only the RDP/TS connection or it should affect other areas of the server?
 If this server run IIS application should we encounter with any issue by enabling this setting?
I am trying to understand what is the risk of enabling this option other than “breaking” the RDP/TS?

  • 2
1 Solution
SteveIT ManagerCommented:
some info on effects of enabling FIPS


In reply to your questions...

1. It will primarily affect the TS connection only,
2. As you've mentioned that have an IIS application, this should not affect it as long as it is accessed via port 80. If you have a HTTPS (port 443) connection then connectivity will be forced to use TLS 1.0, which shouldn't be a problem for most client operating systems, as it is already enabled. I would refer to the following link for further reading: http://support.microsoft.com/kb/811834

Just a heads up, why not manually enable the setting on your TS first and review connectivity and IIS application connectivity before launching system wide changes across multiple TS via GPO. This way if this causes a problem it can be easily corrected within a few clicks.

Hope this helps.
dpatel_teamAuthor Commented:
Hi All,

After doing some testing it appears that it actually does affect the IIS application (for some reason).

Just warning to everyone who is going to enable this option and think that it will affect only the TS connection.

Cheers for the update, thanks.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now