Sql-server – What’s the risk of disabling Network level authentication with Windows Remote Desktop

network-level-authremote desktopsql server

Windows Server 2008 offers two options for Remote Desktop sessions:

Allow connections from users running any version of Remote Desktop
Allow connections only from users running Remote Desktop with Network Level authentication

The second option is recommended in the dialog, but even the help does not really explain the risk in choosing the first one.

Why is the second option recommended? Is there a known security hole that would allow attackers to get access to my server if the first option is chosen?

Best Answer

As long as you are all up to date and using RDP 6.1, you will probably not notice a difference, and should use the more secure option. It is more of a factor if you are using RDP from the outside since there are theoretical man-in-the-middle attack possible. The risk is not high, but it technically there.

http://support.microsoft.com/kb/952155

Best Answer

Related Solutions

Remote Desktop, Host: 2008, Client: Windows 7, The remote computer requires Network Level Authentication, which your computer does not support

Linux – Remote Desktop from Linux to Computer that Requires Network Level Authentication

Related Topic