Would you like to learn how to use a group policy to configure the Remote Desktop security level to TLS? In this tutorial, we will show you how to force the use of TLS on remote desktop connections.
• Windows 2012 R2 • Windows 2016 • Windows 2019 • Windows 2022 • Windows 10 • Windows 11
Equipment list
Here you can find the list of equipment used to create this tutorial.
This link will also show the software list used to create this tutorial.
Windows Related Tutorial:
On this page, we offer quick access to a list of tutorials related to Windows.
Tutorial GPO – Configure Remote Desktop security level to TLS
On the domain controller, open the group policy management tool.
Create a new group policy.
Enter a name for the new group policy.
In our example, the new GPO was named: MY-GPO.
On the Group Policy Management screen, expand the folder named Group Policy Objects.
Right-click your new Group Policy Object and select the Edit option.
On the group policy editor screen, expand the Computer configuration folder and locate the following item.
Access the folder named Security.
Enable the item named Require use of specific security layer for remote (RDP) connections.
Select the TLS option.
如果 TLS 选项不可用,请选择 SSL 选项。
To save the group policy configuration, you need to close the Group Policy editor.
Congratulations! You have finished the GPO creation.
Tutorial GPO – Configure Remote Desktop security level to TLS
On the Group policy management screen, you need to right-click the Organizational Unit desired and select the option to link an existent GPO.
In our example, we are going to link the group policy named MY-GPO to the root of the domain.
应用 GPO 后,您需要等待 10 或 20 分钟。
在此期间,GPO 将复制到其他域控制器。
在我们的示例中,我们将远程桌面连接配置为使用 TLS。