Remote Desktop 6.0, Network Level Authentication not work on OS prior Vista...

 

Just a small tip for people using Remote Desktop very often, like me.

Microsoft released new version of Remote Desktop, on version 6.0 , which has more support on the ease of use of Terminal Service. one of the features I like very much is the support for connecting local device to remote site, like, a local smartcard reader to remote site and to login some places in remote place using smartcard beside you.

But to use Remote Desktop service in Vista isn't as intuitive as before now. as the network security is strengthen, you gotta do some settings to let your Vista machine be able to be terminal serviced from any "safe" place or safe connection source. this includes the settings of Vista's enhanced firewall. things will get more complicated if your Vista machine is under a Domain and Domain Admin put some restrictions on your firewall rule. I'll post the settings for Vista firewall to enable RDP connection when I have time later.

for now, one should be aware that after RDP6.0, there is a function called Network Level Authentication (NLA), which seems to be only available after Vista. so if you set your Vista RDP to only accept NLA connection, you'll fail your connection when you termical service to your Vista from WinXP or Windows 2003 Server, like this dialogue box:

So, where to turn on or turn off NLA in Vista? it's at Control Panel -> System -> Remote Settings:

if you want to be able to terminal service from WinXP or Windows 2003 servers, using the second setting. if you only RDP using Vista machines, you can set the third setting to turn on NLA, which should be more safe on handling your connections...

FYI

Technorati Tags: microsoft , windows, vista, remote desktop, RDP, NLA