Can I safely use remote login to a Windows server from the Internet via RDP?

B

by_EL2020-01-26 14:58:22

System administration

by_EL, 2020-01-26 14:58:22

Is it safe to open rdp windows server port for internet access??

Reply

Answer the question

In order to leave comments, you need to log in

6 answer(s)

R

res2001, 2020-01-26
@res2001

You can:
1.enable network level authentication 2.do not
use a self-signed certificate (create your own CA, generate certificates for the server and clients on it)
3.use only strong encryption protocols
4.enable client authentication
5.change the default RDP port - optional
Here everything is not badly described.
In general, these are general methods for securing any connection (not just RDP) using SSL/TLS.

G

Gregory, 2020-01-26
@Maxlinus

do filtering by static IP addresses, firewall or router

A

Alex, 2020-01-26
@asilonos

Be sure to set up two-factor login for RDP connections. The easiest with Rohos (paid) -
www.rohos.ru/2015/03/terminal-server-login-by-sms-otp

A

Artem @Jump, 2020-01-26
Tag

Can.
It all depends on how critical it is.
In some cases, the default setting is sufficient.
In some cases, security is further enhanced.
For example, using port knocking, IP restrictions, in some cases even VPNs are wrapped.

V

Vladimir Korotenko, 2020-01-26
@firedragon

https://sysadmins.ru/topic495465.html

M

mumische, 2020-01-30
@mumische

Use RD Gateway to access:
https://docs.microsoft.com/en-us/windows-server/re...