Adding an RDP Profile

RDP profiles allow you to restrict user activity during an RDP connection. These restrictions include the type of remote desktop client (native or web), blocking copy and paste (using the clipboard) or file transfer, setting a maximum length of time for the session, and reauthentication time.

The RDP profiles can be viewed at the Policy > Security Profiles > RDP screen.

512

Key Considerations

  • If you make a change to the RDP profile, the change will only become active after you commit the changes. '
  • RDP Profiles are only applied to new sessions not current sessions.

Refreshing an RDP Session

Users must refresh their RDP session by doing one of the following:

  • For native RDP sessions, users must download the new launcher file.
  • For web RDP sessions, users must start a new RDP Web session.

The following screenshot displays the permissions that can be associated with a RDP profile.

546

Limit Session Length

The Limit Session Length option has the following options:

  • Maximum session length
  • RDP file reauthentication time

Maximum Session Length

Use the Maximum Session Length option session to specify how long (minutes or hours) a user’s session can remain active once the user is granted a session. Note that the user’s session is also determined if the user successfully re-authenticates during the session. The default is 24 hours.

RDP File Reauthentication Time (Native RDP only)

For Native RDP sessions, use the RDP file reauthentication time option to specify how much time is allowed to elapse (in days, hours, or minutes) before a user is prompted to reauthenticate. The default is 3 hours.

810

Creating an RDP Profile

  1. In the Management Console, go to Policy -> RDP Profile -> Add Profile.
  2. Enter a name for the profile.
  3. (Optional) Add a description for the profile.
1062
  1. In Remote desktop clients, configure the following options:
  • Allow access through a web RDP client option: Allow users to connect through a web-based RDP client.
  • Allow access through a native RDP client option to allow users to connect through a native RDP client.
  1. In User permissions, configure the following options:
User PermissionDescription
Allow clipboardAllow users to copy and paste files both to and from the remote computer
Allow file transferAllow users to transfer files both to and from the remote computer to local computer
Allow local printersAllow users to connect to a local printer.
Limit Session LengthSelect the length in hours or minutes to limit the RDP connection to a certain time range. Once the time is up the user's session will terminate.
Note: The maximum session length for an RDP is 24 hours.
RDP File Reauthentication Time (Native RDP only)Specify how much time is allowed to elapse (in days, hours, or minutes) before a user is prompted to reauthenticate. The default is 3 hours.