How to disable RDP session hijacking by another client that uses the same credentials?

T

Trianid Trianid2015-12-10 01:12:00

RDP

Trianid Trianid, 2015-12-10 01:12:00

Hello toaster. I can not correctly ask Google, I ask you.
There is a terminal server on Windows (2008+). When a remote session is running in client No. 1, the user works fine for himself. How to make sure that when connecting with the same account by another client, the first client is not thrown away. For the second client to wait until the first client closes the connection, or throws it away. And if it is possible, how to implement it correctly, in particular in relation to specific users and / or groups, since I would like admins to not sign this rule.
Thanks in advance for the info, Toaster!
UPDATE: I care about security as much as you do. It's just that the specifics of the task require a non-standard approach, which in this case will not become a vulnerability.

Reply

Answer the question

In order to leave comments, you need to log in

2 answer(s)

A

Alexey S., 2015-12-10
@trianid

you understand that your offer is a violation of all security rules. Different people should not log in under the same account, then you can’t find the ends if one of them does “oh, that’s it”

K

kir117, 2015-12-10
@kir117

Technically, it is not difficult, in the RD Session host configuration settings, uncheck the box Restrict each user to a single session. But I fully join the previous speaker, it is impossible to do this organizationally.