<div>
<div class="content wysiwyg-content">
Hi<br />
On a client, connecting to an 2012R2 RDS server through rdweb, I have a serious security problem.<br />
The user logs in to the session, getting prompted for credentials.<br />
The user logs the session using ctrl+alt+end.<br />
Then he goes for coffee.<br />
Another employee walks by, and clicks the session Collection. He gets no prompt for password, but connects to the other session, and at the same time magicly unlocks the locked session without knowing the password?!
</div>
</div>


Hi
On a client, connecting to an 2012R2 RDS server through rdweb, I have a serious security problem.
The user logs in to the session, getting prompted for credentials.
The user logs the session using ctrl+alt+end.
Then he goes for coffee.
Another employee walks by, and clicks the session Collection. He gets no prompt for password, but connects to the other session, and at the same time magicly unlocks the locked session without knowing the password?!

RDS connection does not prompt for login credentials, when launched 2nd time on same computer.

Windows Server 2012 is the server version of Windows 8 and the successor to Windows Server 2008 R2. Windows Server 2012 is the first version of Windows Server to have no support for Itanium-based computers since Windows NT 4.0. Windows Server 2012, now in its second release (Windows Server 2012 Release 2) includes Foundation, Essentials, Standard and Datacenter, and does not support IA-32 or IA-64 processors.