Remote desktop is functional operating system, allowing you to administer a remote computer in real time using local area network or the Internet as a transmission medium. There are a great many remote desktop implementations, depending on the protocol or operating system. The most common solution in the operating system Windows family is an Remote Desktop Protocol (RDP), and on systems on Linux kernel- VNC and X11.
How to enable remote desktop capability
By default on workstation under Windows control disabled the ability to become an RDP session server.
Right-click on the "My Computer" icon, select in context menu item "Properties".
We select the item "Setting up remote access" in the left menu. This will require administrator privileges.
The "System Properties" window will open, in which, on the "Remote Access" tab, you need to set the permission to access this computer as it is done in the screenshot below.
If necessary, you can select the users under which it is possible to log in to the system.
Also, if you have installed network filter(Firewall), you will need to create an allowing rule to connect to this computer in properties network adapter or in the Windows Firewall applet in Control Panel.
How to connect to remote desktop
Remote Desktop Connection can be done in several ways. Go to the main menu of the system "Start - All Programs - Accessories - Remote Desktop Connection"
Or execute the command in the command Windows prompt(or the window " Execute»)
Both of these methods are equivalent and run the same program - the Remote Desktop Connection Wizard.
In the wizard window, you can specify the name or IP address of the computer to which you want to connect, as well as specify special parameters such as screen resolution, transfer of local (clipboard, local drives) or remote (sounds) resources.
Enter the IP address of the remote node and press the button " To plug».
Most likely, we will see a warning about problems with the authentication of the remote computer. If we are sure that we have not made a mistake in spelling the address or name, then we can click "Yes", after which the connection to the node will be initialized.
In addition, you will need to enter the credentials of the remote user.
If we were not mistaken anywhere, then after some time we will see the desktop of the remote computer, where we can perform certain actions. Control the mouse pointer, enter characters from the keyboard, and so on.
As mentioned earlier, for the convenience of system administration, we can transfer local resources such as printers, logical drives or the clipboard on the remote machine.
To do this, in the window of the Remote Desktop Connection Wizard, go to the "Local Resources" tab, click on the "More ..."
And in the window that opens, select, for example, Local disk (C :).
Now, when connecting a remote desktop, we will see our local disk(C :) of the computer from which you are connecting.
How to increase the security of your remote desktop
It's no secret that leaving a computer with remote desktop activated and connected to the Internet is unsafe. The fact is that various types of attackers are constantly scanning ranges network addresses in search of neglected network services(including remote desktop) for the purpose of their further hacking.
One way that can make it harder for an attacker to find a running Terminal Service (RDP) service is to change the default port number to a different value. By default, the RDP service listens on network port 3389 / TCP while waiting for an incoming connection. It is to this port that attackers try to connect in the first place. We can say with almost 100% certainty that if a port with this number is open on the computer, then it is running Windows system with allowed remote access.
Attention! Follow up with system registry must be done very carefully. Changing certain parameters can render the operating system unusable.
In order to change the port number of the remote desktop, you need to open the registry editor and open the section:
HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Control \ Terminal Server \ WinStations \ RDP-Tcp
Then find REG_DWORD the PortNumber parameter and change its value in decimal system to an arbitrary number (from 1024 to 65535).
After the value has been changed, the computer should be restarted. Now, to access the remote desktop, you need to additionally specify our port separated by a colon. In this situation, you need to specify as the computer name 10.0.0.119:33321
Well, attackers, having tried the standard port, will probably conclude that it is not allowed on this computer. remote access via RDP protocol. Of course, this method will not save you from targeted attacks, when every network port is carefully checked in search of a loophole, but it will protect you from massive template attacks.
In addition, you need to use a rather complex and long password for those accounts that are allowed access via remote desktop.
Remote Desktop Protocol (RDP) is a technology that allows you to remotely connect to your computer's desktop. Initially, RDP is a server technology, but Microsoft, in an effort to please its users, starting with Windows XP began to include Remote Desktop in all client operating systems. Was no exception and latest version client OS - Windows 8.
Remote Desktop is available in the following versions Windows 8:
- Windows 8 Enterprise
- Windows 8 Professional
To enable RDP in the Core Windows versions 8, you will have to upgrade the OS to the Pro version.
By default, for security reasons, Windows 8 Remote Desktop Access is closed, in this article we will analyze several ways to enable Remote Desktop on Windows 8 clients.
How to enable Remote Desktop in Windows 8 from the GUI
The easiest and most familiar way to enable rdp is to use the graphical Windows interface... This operation must be performed under an account with local administrator rights. Start the management console System(you can find it in the Control Panel, or in Explorer by right-clicking on the Computer icon and choosing the Properties menu).
Open the window for setting up a remote connection by clicking on the link in the left column Remote Settings(the same window is called by the command SystemPropertiesRemote.exe).
To allow remote rdp access to this machine, check the box Allow remote connection to this computer(for a more secure connection, you can only allow connections from rdp clients with - Allow connections only from computers running Remote Desktop with Network Level Authentication) and click OK.
Default rights remote connections Members of the Local Administrators group have access to the computer desktop. Additional users can be specified using the button Select Users.
Now you can connect to this Windows 8 PC remotely using an rdp client (by the way)
In the event that the computer is turned on Windows Firewall(firewall), you need to check that it allows incoming rdp connections... Go to control panel and select item Windows Firewal l. Let's open the list of preset Windows Firewall rules by clicking on the link in the left column Allow an app or feature through Windows Firewall... Check that the rule Remote Desktop enabled for the Private profile (home or work network) and, if necessary, for the Public profile (public networks). 
Enabling RDP access using group policies
In the event that you need to enable RDP immediately on a large number PC, the capabilities of group policies will come to our aid (it is assumed that all computers).
Create a new (or edit an existing) Group Policy and link it to the target OU.
We are interested in a parameter named Allow Users to connect remotely by using Remote Desktop Services located in the section Computer Configuration -> Administrative Templates -> Windows Components -> Remote Desktop Services -> Remote Desktop Session Host -> Connections... Open this parameter and change its value to Enable.
After applying this policy, all target computers will become available for remote desktop connections. This policy allows you to enable RDP access on both Windows 8 and Windows Server 2012. 
If Windows Firewall is enabled on the computers, you must allow RDP traffic in the domain firewall profile. To do this, you need to activate the rule Windows Firewall: Allow Remote Desktop Exception(located in the section Computer Configuration -> Administrative Templates -> Network -> Network Connections -> Windows Firewall -> Domain Profile).
Remote enable RDP in Windows 8
Above, we looked at ways to locally enable Remote Desktop in Windows 8 and bulk activate it in the domain using group politics... Next, we will analyze specific techniques for remotely enabling RDP over the network using various tools.
Naturally, we mean that the remote PC is accessible over the network (access is not blocked by a firewall) and you have local administrator rights on it.
Turn on Remote Desktop remotely through the registry
RDP in Windows 8 can be activated remotely using the ability to modify the registry through the remote registry service - RemoteRegistry. By default, the RemoteRegistry service in Windows 8 is disabled for security reasons. To enable it, connect to your Win 8 PC using the console Computer Management, go to section Services and Applications -> Services, find a service Remote Registry, change the startup type to Manual(manual) and then start the service - Start.
The same can be done remotely using sc commands (allowing you to create, manage, or):
Sc \\ Win8_RDP_PC..site start RemoteRegistry
Then, on your machine, run the registry editor regedit.exe, select the (Connect network registry) item from the File menu, specify the name or IP address of the Windows 8 computer on which you want to enable RDP.
Go to section HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Control \ Terminal Server... Find the parameter fDenyTSConnection(type REG_DWORD). If given key missing - create it.
The fDenyTSConnection key can take the following values:
- fDenyTSConnection = 0- Remote desktop included
- fDenyTSConnection = 1- Remote desktop disabled
Those. to turn on RDP access to this computer, set this parameter to 0 ... Immediately after that, without rebooting, the remote Windows 8 computer should become accessible via RDP.
Turn on remote desktop over the network from the command line
The above remote registry trick can be accomplished even more easily and elegantly with just one command. The REG ADD command will come to our aid, allowing you to add and change data in the Windows registry. Not everyone knows that she knows how to work with the registry of a remote computer (as in the previous case, the Remote Registry service must be enabled on the target computer).
A command to remotely enable RDP on a client computer named Win8_RDP_PC might look like this:
REG ADD "\\ Win8_RDP_PC \ HKLM \ SYSTEM \ CurrentControlSet \ Control \ Terminal Server" / v fDenyTSConnections / t REG_DWORD / d 1 / f
Enabling RDP with PowerShell
And finally, let's look at another method for enabling PowerShell remotely. Let's use the capabilities of connecting from PowerShell to WMI.
Open the Powershell console and execute the following PoSh commands in sequence:
$ ts = get-WMIObject Win32_TerminalServiceSetting -computername Win8_RDP_PC $ ts.SetAllowTSConnections (1)
Where Win8_RDP_PC is the name of the Windows 8 computer on which you want to enable RDP.
If Remote Desktop needs to be disabled, the second command should be.
It doesn't matter if you are using the server operating system or not, the same application is used to connect to the remote desktop - Remote Desktop Connection... The executable file is called mstsc.exe and is located in % systemroot% / system32 / mstsc.exe... Let's take a closer look at its capabilities.
Starting a Remote Desktop Connection from command line
If you are using Windows Vista and run the command mstsc /?, you will see the following options available:
In order not to waste time navigating the menu and searching where the client is located, click Start -> Run and then enter mstsc and press Enter.
You can save your configured connections to an RDP file, which is a simple text file... You can create one RDP file and then edit it to fit your needs and reconfigure it to different servers, or change the settings for connecting to a specific server. Below is one of the rdp files open in notepad.
You can edit RDP files with graphical interface which offers options Open, Save, and Save as:
You can also start editing a specific RDP file using the GUI, but by calling this edit from the command line. This is done using the option / edit:
mstsc / edit test.rdp
- We can save connections to different servers and put them in one place for quick access .:
- We can set up many versions of one connection
- We can have one RDP file that connects to the server, and one RDP file that connects to the server and launches a specific application.
Create a shortcut to connect to a remote desktop
Let's assume we need a desktop shortcut to connect to a specific server. Let's say we need connections with the following settings:
- Connection to the "exchange" server
- Connecting to the console of this server
- Session window should be 800x600
To do this, create a shortcut with the following content:
However, if the basic options are not enough, you can use the previously saved in the shortcut .rdp file.
To do this, run mstsc.exe, create and configure a connection, click the button Save as in the window General... Give the persisted connection a name that is understandable in the future. After that, you can close the Remote Desktop Connection client and create a shortcut. Now you must specify the following:
Mstsc.exe c: \ users \ david \ documents \ exchange.rdp
Or, after you have saved the rdp file, there is no need to create a shortcut. You can simply go to the folder containing exchange.rdp and run it.
Sentry
A smart car site about Audi cars. New cars, used cars, spare parts for Audi and much more.
The AUTOTRACKER system is a complete solution for enterprises of various scales for fleet management, with a built-in fuel consumption control system, tracking vehicles on the way, etc. Transport companies are advised to pay attention to this system.
I greet you. Alexander Glebov is in touch with you. This time I will tell and show you how to enable remote desktop, that is, rdp, remotely. If interested, read on.
Introduction
You may ask: "Why do we need to enable remote desktop remotely at all? In a domain, politicians can do it, and so on." I'll tell you where I needed to enable remote desktop. I worked at one time in the company NG Energo, and there was such a case. In one office they installed new computer with installed Windows 7, but it was not in the domain, and on Windows, RDP is disabled by default. So I had to think about how to remotely enable rdp in order to then connect and enter the computer into the domain. Let's get to the point ...
Procedure - enable remote desktop (rdp) remotely
There are several requirements without which you cannot enable rdp remotely, namely:
- You must have this administrator on the remote workstation;
- it should be physical access over the network.
So let's get started. We press start, there we press execute, enter regedit and press enter. This will open the registry editor. It so happens that there is no run button, then press "Windows + R", our run will open. It looks like this: 
In the opened registry editor, you need to connect the remote registry. It is done like this: click in the left upper corner, "file", then "connect the network registry". In the window that opens, enter the name or ip of the remote computer, click ok. 
As a result, if the computer is in your domain and you have sufficient authority, that is, your Account to the group of local administrators, a new registry branch will appear in the editor (example below). If, as in my example, the computer is located in working group, then a request will pop up to enter credentials that have the appropriate rights: 
Read also:
Windows overview update minitool- an alternative update tool for Windows 10
Enter the login (User) in the format: name of the remote computer \ name of the remote user, then enter the password and click OK. If the data is entered correctly, we get the following picture: 
Then we go along the following path: "HKLM \ SYSTEM \ CurrentControlSet \ Control \ Terminal Server", and on the right we see a set of keys, we are interested in the key fDenyTSConnections... It needs to be assigned a value of 0. 
After that, we ask someone to restart the computer and try to connect via RDP. However, it may turn out that it will not be possible to connect, this means that most likely FireWall is enabled on the remote computer, and you need to add a rule that allows you to connect via the standard port 3389. If for some reason you did not manage to add a key through the registry editor, then we read below. There I give the command to enable rdp via pstools and the command line.
How to add a rule to the firewall on a remote computer?
The requirements are the same, you must have physical access over the network, and you must have administrator data on the remote computer. Let's take the following steps:
Remote Desktop Protocol or simply RDP provides the ability for a user to access a remote computer without direct contact with it. This means that anyone can see all the files on the desktop, run them, work with them as if they were sitting right at the computer. The only caveat is work through this protocol will always be limited by internet speed. Before working with this technology, you must first activate it on the device through which you will enter the remote laptop.
Configuring Remote Desktop Access
How to set up rdp for windows 7? It couldn't be easier! Go to the "Start" - "Control Panel". Then select "System and Security" - "System". After that you will see the item "Setting up remote access", click on it. Next, a window will appear in which you will need to check the box next to "Allow connections from computers with any version of the remote desktop." For the convenience of your work at the computer, do not forget to do it correctly beforehand.
Configuring the client for RDP protocol
First of all, let's understand what a client is. The client is the component of the system that sends requests to the server. I note that clients for RPD exist in almost every OS, of course, in Windows 7 too. By the way, the built-in application MsTsc.exe is used for this operating system.
So, to set up the client, follow these simple steps. We go to "Start" - "Run", a window appears in which we enter mstsc and click "Next". To configure normal access without the specified settings, enter the IP of the computer to which you need access in the corresponding field. Next, you will see the settings where you can change various parameters, such as sound. Press "Enter", and that's it, the setup is complete!
Extra options
These include the ability to customize the screen, remote sounds, customize the connection, etc. For example, screen capabilities are edited in the "Display settings" tab. There you can also select the resolution of the remote desktop, its background, color depth. And how to adjust the brightness of the screen directly on the computer you are using this moment work is described in this. In the "Remote Sound" section, you can configure the musical accompaniment of any actions, etc.
As you can see, setting up rdp for windows 7 is as easy as shelling pears. After a few minutes, you will be able to work with remote computer, performing various actions and commands on it, as well as working with files, documents, applications, etc.
