Windows Remote Desktop: Difference between revisions
No edit summary |
No edit summary |
||
| (15 intermediate revisions by the same user not shown) | |||
| Line 7: | Line 7: | ||
*[[Windows#Subjects|Windows]] | *[[Windows#Subjects|Windows]] | ||
=Remote Desktop Clients= | |||
==Windows== | |||
===Configure to Connect to a Remote Server=== | |||
1. Start Remote Desktop Connection | |||
Start -> All Programs -> Accessories -> Communications -> Remote Desktop Connection. | |||
2. Specify computer. | |||
1.2.3.4 | |||
3. Specify username/password. | |||
===Export Local Resources of the Machine we are Connecting to to be Available on the Machine we are Connecting From=== | |||
Launch Remote Desktop Connection -> Show Options -> Local Resources tab -> Local devices and resources: Printers, Clipboard -> More -> Drives -> C: | |||
===Group Policy Entries=== | |||
Start Local Group Policy Editor (https://home.feodorov.com:9443/wiki/Wiki.jsp?page=LocalGroupPolicyEditor and navigate to Computer Configuration -> Administrative Templates -> Windows Components -> Remote Desktop Services -> Remote Desktop Session Host. | |||
===Executable=== | |||
Windows 7, Windows 8: C:/Windows/System32/mstsc.exe | |||
==Mac== | |||
Mac users can access a Microsoft Windows with Remote Desktop access enabled. For that: | |||
1) Download "Microsoft Remote Desktop" from App Store. | |||
DO NOT use "Remote Desktop Connection", I had troubles with it. | |||
2) Configure as follows: | |||
Connection Name: NOW530 | |||
PC Name: NOW530 | |||
Credentials | |||
User name: ovidiu | |||
Password: *** | |||
Resolution: Native | |||
Colors: True Color (24 bit) | |||
Full screen mode: OS X native | |||
DO NOT Start session in full screen | |||
DO NOT Scale content | |||
DO Use all monitors. | |||
===Export Local Resources of the Machine we are Connecting to to be Available on the Machine we are Connecting From=== | |||
Select the entry corresponding to the machine we are connecting into -> Right Click -> Edit -> Redirection tab -> Enable Folder Redirection -> + -> Name, Path. | |||
=Remote Desktop Server= | |||
==Enable a Windows Machine to Run as Session Host== | |||
===Enable on Windows 7, Windows Vista=== | |||
System -> Remote Settings -> Remote Desktop. | |||
In some situations, you must enable the Windows Firewall exceptions for Remote Desktop (the link has a yellow triangle exclamation mark besides it and the "Remote Desktop" options below are grayed out. In order to do that, click on the link and follow the instructions. | |||
Then: | |||
Allow connections from computers running any version of Remote Desktop -> Select Users | |||
===Enable on Windows 8=== | |||
System Settings -> Remote Settings -> Remote -> Remote Desktop | |||
Command line: | |||
C:\Windows\System32\SystemPropertiesAdvanced.exe | |||
See the firewall exception notes, above. | |||
Then: Allow Remote Connections to this Computer. | |||
===Enable on Windows 10=== | |||
Command line: | |||
C:\Windows\System32\SystemPropertiesAdvanced.exe > Remote -> Remote Desktop | |||
==Troubleshoot the Session Host== | |||
===1. Verify that the Service is Running=== | |||
Services: | |||
* Remote Desktop Configuration | |||
* Remote Desktop Services | |||
* Remote Desktop Services UserMode Port Redirector | |||
To start the service: | |||
<pre> | |||
C:\windows\System32\svchost.exe -k NetworkService | |||
</pre> | |||
===2. Verify that the Firewall Allows Access=== | |||
The "Remote Desktop" rule should be there. More details here: | |||
https://home.feodorov.com:9443/wiki/Wiki.jsp?page=WindowsFirewall#section-WindowsFirewall-AddingAccessRuleForRemoteDesktopOnSessionHost | |||
===3. Boost Group Policy Rules=== | |||
I did this on just on pre-configured corporate laptop, not sure if it is really necessary generally. | |||
Start the Local Group Policy Editor following the procedure3 described here: https://home.feodorov.com:9443/wiki/Wiki.jsp?page=LocalGroupPolicyEditor#section-LocalGroupPolicyEditor-Run | |||
Then navigate to Local Computer Policy -> Computer Configuration -> Administrative Templates -> Windows Components -> Remote Desktop Services -> Remote Desktop Session Host: | |||
Connections: | |||
* Allow users to connect remotely using Remote Desktop Services: Enabled | |||
Device and Resource Redirection: | |||
* Do not allow drive redirection: Disabled. | |||
Security: | |||
* Set client connection encryption level: Enabled , Encryption Level: Client Compatible | |||
* Always prompt for password upon connection: Enabled | |||
* Require user authentication for remote connection by using network Level Authentication: Disabled | |||
Session Time Limit: | |||
* Set time limit for active but idle Remote Desktop Service sessions: Enabled, Idle session limit: Never. | |||
* Set time limit for active Remote Desktop Service sessions: Enabled, Active session limit: Never | |||
===4. Added my network user to "Remote Desktop Users" group=== | |||
I did this on just on pre-configured corporate laptop, not sure if it is really necessary generally. | |||
Start the local user management utility as described in https://home.feodorov.com:9443/wiki/Wiki.jsp?page=WindowsUsers#section-WindowsUsers-UserManagement | |||
Then, go to Groups, double click on Remote Desktop Users -> Add -> "...." | |||
Latest revision as of 02:28, 29 January 2016
External
- http://en.wikipedia.org/wiki/Network_Level_Authentication
- Configure Remote Desktop Access on Windows 7 Systems http://technet.microsoft.com/en-us/magazine/ff404238.aspx
Internal
Remote Desktop Clients
Windows
Configure to Connect to a Remote Server
1. Start Remote Desktop Connection
Start -> All Programs -> Accessories -> Communications -> Remote Desktop Connection.
2. Specify computer.
1.2.3.4
3. Specify username/password.
Export Local Resources of the Machine we are Connecting to to be Available on the Machine we are Connecting From
Launch Remote Desktop Connection -> Show Options -> Local Resources tab -> Local devices and resources: Printers, Clipboard -> More -> Drives -> C:
Group Policy Entries
Start Local Group Policy Editor (https://home.feodorov.com:9443/wiki/Wiki.jsp?page=LocalGroupPolicyEditor and navigate to Computer Configuration -> Administrative Templates -> Windows Components -> Remote Desktop Services -> Remote Desktop Session Host.
Executable
Windows 7, Windows 8: C:/Windows/System32/mstsc.exe
Mac
Mac users can access a Microsoft Windows with Remote Desktop access enabled. For that:
1) Download "Microsoft Remote Desktop" from App Store.
DO NOT use "Remote Desktop Connection", I had troubles with it.
2) Configure as follows:
Connection Name: NOW530
PC Name: NOW530
Credentials
User name: ovidiu
Password: ***
Resolution: Native
Colors: True Color (24 bit)
Full screen mode: OS X native
DO NOT Start session in full screen
DO NOT Scale content
DO Use all monitors.
Export Local Resources of the Machine we are Connecting to to be Available on the Machine we are Connecting From
Select the entry corresponding to the machine we are connecting into -> Right Click -> Edit -> Redirection tab -> Enable Folder Redirection -> + -> Name, Path.
Remote Desktop Server
Enable a Windows Machine to Run as Session Host
Enable on Windows 7, Windows Vista
System -> Remote Settings -> Remote Desktop.
In some situations, you must enable the Windows Firewall exceptions for Remote Desktop (the link has a yellow triangle exclamation mark besides it and the "Remote Desktop" options below are grayed out. In order to do that, click on the link and follow the instructions.
Then:
Allow connections from computers running any version of Remote Desktop -> Select Users
Enable on Windows 8
System Settings -> Remote Settings -> Remote -> Remote Desktop
Command line:
C:\Windows\System32\SystemPropertiesAdvanced.exe
See the firewall exception notes, above.
Then: Allow Remote Connections to this Computer.
Enable on Windows 10
Command line:
C:\Windows\System32\SystemPropertiesAdvanced.exe > Remote -> Remote Desktop
Troubleshoot the Session Host
1. Verify that the Service is Running
Services:
- Remote Desktop Configuration
- Remote Desktop Services
- Remote Desktop Services UserMode Port Redirector
To start the service:
C:\windows\System32\svchost.exe -k NetworkService
2. Verify that the Firewall Allows Access
The "Remote Desktop" rule should be there. More details here:
3. Boost Group Policy Rules
I did this on just on pre-configured corporate laptop, not sure if it is really necessary generally.
Start the Local Group Policy Editor following the procedure3 described here: https://home.feodorov.com:9443/wiki/Wiki.jsp?page=LocalGroupPolicyEditor#section-LocalGroupPolicyEditor-Run
Then navigate to Local Computer Policy -> Computer Configuration -> Administrative Templates -> Windows Components -> Remote Desktop Services -> Remote Desktop Session Host:
Connections:
- Allow users to connect remotely using Remote Desktop Services: Enabled
Device and Resource Redirection:
- Do not allow drive redirection: Disabled.
Security:
- Set client connection encryption level: Enabled , Encryption Level: Client Compatible
- Always prompt for password upon connection: Enabled
- Require user authentication for remote connection by using network Level Authentication: Disabled
Session Time Limit:
- Set time limit for active but idle Remote Desktop Service sessions: Enabled, Idle session limit: Never.
- Set time limit for active Remote Desktop Service sessions: Enabled, Active session limit: Never
4. Added my network user to "Remote Desktop Users" group
I did this on just on pre-configured corporate laptop, not sure if it is really necessary generally.
Start the local user management utility as described in https://home.feodorov.com:9443/wiki/Wiki.jsp?page=WindowsUsers#section-WindowsUsers-UserManagement
Then, go to Groups, double click on Remote Desktop Users -> Add -> "...."