Re: Terminal Services/Remote Desktop connection - Is it encrypted?
From: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP] (sbradcpa_at_pacbell.net)
Date: 03/13/04
- Next message: Cris Hanna \(SBS-MVP\): "Re: Reading Administrator Mail and User Mail"
- Previous message: Tony Su: "Re: FTP Server on SBS: How bad an idea?"
- In reply to: Ruby Tuesdays: "Re: Terminal Services/Remote Desktop connection - Is it encrypted?"
- Messages sorted by: [ date ] [ thread ]
Date: Fri, 12 Mar 2004 20:57:16 -0800
Somehow I don't think that Microsoft is going around de-encrypting TS
sessions, nor does it have a "master key"
Any of our remote connectivity is more dependent upon our use of good
passwords and Microsoft doesn't have that.
When my friends who work for Dept of Defense contracts log in remotely
they use a "what you know" password and "what you have" RSA secure token
device that sends a code that they have to enter into their remote
session. The final layer of authentication is a "who you are" with
biometrics.
Ruby Tuesdays wrote:
> Thanks Chris. I follow your instruction and I did find for the Terminal
> Services Configuration on the server. I change it from the default value
> 'User highest encryption level' to 'High'(force the client to the highest
> encryption level).
> But, I can't find any setup for the Encryption Level on the client.
>
> How does the client knows the server encryption level? Is it because both
> are Windows OS? What kind of encryption scheme does Microsoft use?
>
> I'm not convince that it is really encrypted since Microsoft knows the
> key.... How one set up a particular encryption method on both the server
> and client so they can communicate and understand each other. Thanks
> "Chris Puckett [MSFT]" <cpuckett@online.microsoft.com> wrote in message
> news:VjzsZZICEHA.660@cpmsftngxa06.phx.gbl...
>
>>On the server, open the TS Configuration console from the admin tools
>
> menu.
>
>>On the left, click Connections. On the right side, view the properties of
>>RDP-TCP.
>>On the General tab, the encryption level is defined. There is a drop down
>>list with 4 levels of encryption you can choose from.
>>None of the options are 'no encryption'.
>>
>>816594.KB.EN-US HOW TO: Secure Communication Between a Client and Server
>>with Terminal
>>http://support.microsoft.com/default.aspx?scid=KB;EN-US;816594
>>
>>Chris Puckett, MCSE
>>Microsoft Small Business Server Support
>>
>>
>>This posting is provided "AS IS" with no warranties, and confers no
>
> rights.
>
>
>
-- http://www.sbslinks.com/really.htm
- Next message: Cris Hanna \(SBS-MVP\): "Re: Reading Administrator Mail and User Mail"
- Previous message: Tony Su: "Re: FTP Server on SBS: How bad an idea?"
- In reply to: Ruby Tuesdays: "Re: Terminal Services/Remote Desktop connection - Is it encrypted?"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
