Solved

Would like to require Network Level Authentication for RDP Using Group Policy

Posted on 2016-09-30
3
68 Views
Last Modified: 2016-10-04
Now that we have removed all of our Windows 2003 Servers, we would like to require Network Level Authentication for RDP Using Group Policy.  We've created a group policy that we've applied to an OU with Windows 7 and Windows 10 endpoints so that we don't break connectivity to our servers.  We've confirmed that the policy has applied, but the checkbox remains unchecked.
The group policy uses the settings in Computer Configuration\Policies\Administrative Templates\Windows Components\Remote Desktop Services\Remote Desktop Session Host\Security.
I've attached a screen capture of the settings of the group policy.
I've attached a screen capture of the RDP Settings.
What am I missing?  Is what we want to do possible?
Thank you very much!

Sincerely,
Richard
RDP-Settings-Showing-NLA-Unchecked.jpg
Group-Policy-RDP-Settings.jpg
0
Comment
Question by:rroati-prov
3 Comments
 
LVL 14

Assisted Solution

by:Justin Yeung
Justin Yeung earned 250 total points
ID: 41824347
Require user authentication for remote connections by using Network Level Authentication

Enable = check box
Disable = not check the box

of Allow connections only from computers running Remote Desktop with Network Level Authentication (recommend)
1
 
LVL 57

Expert Comment

by:Cliff Galiher
ID: 41824351
The group policy you set is for RPC communications. RPC and RDP are not interchangable acronyms.
0
 
LVL 54

Accepted Solution

by:
McKnife earned 250 total points
ID: 41824675
The correct GPO that needs to be applied to the servers, not the clients, is located in Computer Configuration\Policies\Administrative Templates\Windows Components\Remote Desktop Services\Remote Desktop Session Host\Security: Require user authentication for remote connections by using Network Level Authentication
1

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This script can help you clean up your user profile database by comparing profiles to Active Directory users in a particular OU, and removing the profiles that don't match.
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…

805 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question