Would like to require Network Level Authentication for RDP Using Group Policy

rroati-prov
rroati-prov used Ask the Experts™
on
Now that we have removed all of our Windows 2003 Servers, we would like to require Network Level Authentication for RDP Using Group Policy.  We've created a group policy that we've applied to an OU with Windows 7 and Windows 10 endpoints so that we don't break connectivity to our servers.  We've confirmed that the policy has applied, but the checkbox remains unchecked.
The group policy uses the settings in Computer Configuration\Policies\Administrative Templates\Windows Components\Remote Desktop Services\Remote Desktop Session Host\Security.
I've attached a screen capture of the settings of the group policy.
I've attached a screen capture of the RDP Settings.
What am I missing?  Is what we want to do possible?
Thank you very much!

Sincerely,
Richard
RDP-Settings-Showing-NLA-Unchecked.jpg
Group-Policy-RDP-Settings.jpg
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Justin YeungSenior Systems Engineer
Commented:
Require user authentication for remote connections by using Network Level Authentication

Enable = check box
Disable = not check the box

of Allow connections only from computers running Remote Desktop with Network Level Authentication (recommend)
Distinguished Expert 2018

Commented:
The group policy you set is for RPC communications. RPC and RDP are not interchangable acronyms.
Distinguished Expert 2018
Commented:
The correct GPO that needs to be applied to the servers, not the clients, is located in Computer Configuration\Policies\Administrative Templates\Windows Components\Remote Desktop Services\Remote Desktop Session Host\Security: Require user authentication for remote connections by using Network Level Authentication

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial