Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Would like to require Network Level Authentication for RDP Using Group Policy

Posted on 2016-09-30
3
Medium Priority
?
102 Views
Last Modified: 2016-10-04
Now that we have removed all of our Windows 2003 Servers, we would like to require Network Level Authentication for RDP Using Group Policy.  We've created a group policy that we've applied to an OU with Windows 7 and Windows 10 endpoints so that we don't break connectivity to our servers.  We've confirmed that the policy has applied, but the checkbox remains unchecked.
The group policy uses the settings in Computer Configuration\Policies\Administrative Templates\Windows Components\Remote Desktop Services\Remote Desktop Session Host\Security.
I've attached a screen capture of the settings of the group policy.
I've attached a screen capture of the RDP Settings.
What am I missing?  Is what we want to do possible?
Thank you very much!

Sincerely,
Richard
RDP-Settings-Showing-NLA-Unchecked.jpg
Group-Policy-RDP-Settings.jpg
0
Comment
Question by:rroati-prov
3 Comments
 
LVL 14

Assisted Solution

by:Justin Yeung
Justin Yeung earned 1000 total points
ID: 41824347
Require user authentication for remote connections by using Network Level Authentication

Enable = check box
Disable = not check the box

of Allow connections only from computers running Remote Desktop with Network Level Authentication (recommend)
1
 
LVL 60

Expert Comment

by:Cliff Galiher
ID: 41824351
The group policy you set is for RPC communications. RPC and RDP are not interchangable acronyms.
0
 
LVL 57

Accepted Solution

by:
McKnife earned 1000 total points
ID: 41824675
The correct GPO that needs to be applied to the servers, not the clients, is located in Computer Configuration\Policies\Administrative Templates\Windows Components\Remote Desktop Services\Remote Desktop Session Host\Security: Require user authentication for remote connections by using Network Level Authentication
1

Featured Post

Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
A bad practice commonly found during an account life cycle is to set its password to an initial, insecure password. The Password Reset Tool was developed to make the password reset process easier and more secure.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

926 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question