RDP profiles allow you to restrict user activity during an RDP connection. These restrictions include the type of remote desktop client (native or web), blocking copy and paste (using the clipboard) or file transfer, setting a maximum length of time for the session, and reauthentication time.
The RDP profiles can be viewed at the Policy > Security Profiles > RDP screen.
- If you make a change to the RDP profile, the change will only become active after you commit the changes. '
- RDP Profiles are only applied to new sessions not current sessions.
Users must refresh their RDP session by doing one of the following:
- For native RDP sessions, users must download the new launcher file.
- For web RDP sessions, users must start a new RDP Web session.
The following screenshot displays the permissions that can be associated with a RDP profile.
The Limit Session Length option has the following options:
- Maximum session length
- RDP file reauthentication time
Use the Maximum Session Length option session to specify how long (minutes or hours) a user’s session can remain active once the user is granted a session. Note that the user’s session is also determined if the user successfully re-authenticates during the session. The default is 24 hours.
For Native RDP sessions, use the RDP file reauthentication time option to specify how much time is allowed to elapse (in days, hours, or minutes) before a user is prompted to reauthenticate. The default is 3 hours.
- In the Management Console, go to Policy -> RDP Profile -> Add Profile.
- Enter a name for the profile.
- (Optional) Add a description for the profile.
- In Remote desktop clients, configure the following options:
- Allow access through a web RDP client option: Allow users to connect through a web-based RDP client.
- Allow access through a native RDP client option to allow users to connect through a native RDP client.
- In User permissions, configure the following options:
|Allow clipboard||Allow users to copy and paste files both to and from the remote computer|
|Allow file transfer||Allow users to transfer files both to and from the remote computer to local computer|
|Allow local printers||Allow users to connect to a local printer.|
|Limit Session Length||Select the length in hours or minutes to limit the RDP connection to a certain time range. Once the time is up the user's session will terminate.|
Note: The maximum session length for an RDP is 24 hours.
|RDP File Reauthentication Time (Native RDP only)||Specify how much time is allowed to elapse (in days, hours, or minutes) before a user is prompted to reauthenticate. The default is 3 hours.|
Updated almost 2 years ago