- Mishiinka Fog ee gudaha Windows 11 u baahan Pro/Ganacsi ahaan server ahaan; macaamiisha ku jira Windows, macOS, macruufka y Android.
- Xidhiidh aamin ah oo lala yeesho NLA, VPN si ay dibadda u galaan iyo dekedo si sax ah loo habeeyey.
- Taageerada Saxiixa Microsoft: Ku gal akoonka shabakada ama aqoonsiga caadiga ah iyadoo ku xidhan dhacdada.
Ka xakamaynta kombuyutarkaaga meel kasta way ka sahlan tahay sida ay u muuqato haddii aad si fiican u taqaano qaybaha halxiraalaha. Windows 11 desktop fog Waxay kuu ogolaanaysaa inaad u maamusho codsiyada, faylasha iyo agabka sidii adigoo hor jooga kombayutarka, ha ahaato kombiyuutar kale oo Windows ah, macOS, iOS ama Android.
Tilmaan-bixiyahan, waxa aad ku baran doontaa sida loogu habeeyo server-ka (kumbuyuutarka aad ku xidhan tahay) iyo macmiil ahaan (computer-ka aad ku xidhan tahay), sida loo isticmaalo si ammaan ah gudaha iyo dibaddaba, iyo sida loo xalliyo khaladaadka ugu badan. Waxaan isku dari doonaa hababka asalka ah (Settings, Control Panel, CMD, PowerShell), Xaqiijinta Saxiixa Microsoft, VPN iyo ikhtiyaarka gudbinta dekedda, oo lagu daray beddelka marka RDP aysan ku habboonayn.
Waa maxay Remote Desktop iyo waxa aad u baahan tahay si aad u isticmaasho
Protocol fogfog (RDP) wuxuu ku shaqeeyaa laba door oo cad: server (PC-ga aad gasho) iyo macmiil (qalabka aad ku xidhayso). Gudaha Windows 11, qaybta server-ka ayaa laga heli karaa daabacadaha Pro iyo Enterprise; Xidhiidhada RDP ee soo galaya si rasmi ah lagama taageero Guriga.
Kahor intaadan bilaabin, xaqiiji daabacaadda rakiban. Tag Start> Settings> System> About and check the Windows Edition section. Haddii aad isticmaasho Windows 11 Pro ama Enterprise waxaad awood u yeelan doontaa server-ka RDP. Haddii aad isticmaalayso Home, waxaad ku rakibi kartaa apps macmiilku si uu ugu xidhmo kombayuutarada kale, laakiin aanu u helin fadhiyada soo socda si asal ahaan ah.
Deegaanka ganacsiga, Windows waxa ay taageertaa isku xidhka kombiyuutarada ku xidhan Hagaha Active iyo aaladaha ku xidhan Hagaha Active. Aqoonsiga Microsoft Entra iyada oo loo marayo RDP. Waxaa lagu talinayaa in la kiciyo Xaqiijinta Heerka Shabakadda (NLA), kaas oo codsanaya aqoonsiga ka hor inta aan la dhisin fadhiga. Sidoo kale ogow in, xaaladaha Entra qaarkood, ay fikrad fiican tahay in la hubiyo in Ilaalada Aqoonsiga Fog aanu firfircoonayn kombuyuutarka aad ka soo xidhayso, iyo hubi inta isku xidhka ay ogolanayso.
Qoraal muhiim ah: dadka qaarkiis waxay ka hadlaan hababka qolo saddexaad ee awood u siinaya server-ka RDP ee daabacadaha Guriga iyadoo la adeegsanayo DLLs aan rasmi ahayn. Laguma talinayo amniga iyo sababaha shatiga.; waa ku haboon tahay in loo cusboonaysiiyo Pro/Ganacsiga ama la isticmaalo xal kale oo lagu kalsoonaan karo kuwaas oo aynu hoos kaga hadlayno.
Awood u yeel Server-ka: Hababka lagu hawlgeliyo Desktop Fog
Qalabku si uu u aqbalo isku xirka RDP, waa inaad si ammaan ah u karti u yeelataa sifada. Qor magaca kooxda marka aad awood siiso: waxaad u baahan doontaa markaad ka xidhidhayso macmiilka.
Habka isku xidhka (fudud). Tag Settings> System> Remote Desktop oo shid daar furaha Desktop-ka fog. Xaqiiji degdegga oo, hoosta Settings Advanced, dooro Qalabka loo baahan yahay si loo isticmaalo Xaqiijinta Heerka Shabakadda (NLA). Sidoo kale daar fursadaha si aad u ilaaliso in kombayutarkaga la heli karo shabakadaha gaarka ah.
Habka leh Control Panel. Furo Control Panel> Nidaamka iyo Amniga> Nidaamka oo dhagsii Oggolow Gelitaanka Fog. Tabka fog, u ogolow xidhiidhyada fogaanta kooxdan oo hubi in sanduuqa NLA la saxo. Codso oo aqbal isbedelada.
Habka leh Amarka degdegga (CMD). U orda sidii maamule oo isticmaal:
reg add "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server" /v fDenyTSConnections /t REG_DWORD /d 0 /f
Si loo furo darbiga RDP: arag sida loo furo firewall-ka ama isticmaal:
netsh advfirewall firewall set rule group="remote desktop" new enable=Yes
Habka leh PowerShell. Fur PowerShell maamule ahaan oo wad:
Set-ItemProperty -Path 'HKLM:\System\CurrentControlSet\Control\Terminal Server' -name "fDenyTSConnections" -value 0
iyo firewall-ka:
Enable-NetFirewallRule -DisplayGroup "Remote Desktop"
Ku xidh macmiil ahaan Windows, macOS, iOS, iyo Android
Daaqadaha, aaladda caadiga ah waa Xiriirinta Mashiinka Fog (MSTSC). Fur adiga oo raadiya "Remote Desktop Connection" in the Start menu ama adigoo ordaya mstsc.exe. Geli magaca kombiyuutarka (ama cinwaanka IP) oo taabo Connect.
Haddii serfarka uu ku biiro Microsoft Sign In oo aad rabto inaad isticmaasho akoonkaaga shirkadda, gudaha MSTSC fur Show Options> tab Advanced oo dhaqaaji Isticmaal koontada shabakada si aad u gasho kombayutarka fog (oo u dhiganta hantida RDP enablerdsaadauth). Geli isticmaalaha qaab ahaan user@domain.comMarka ugu horeysa, waxaa laga yaabaa inaad aragto sanduuqa wada hadalka si aad ugu ogolaato xidhiidhka martigeliyaha cusub: ku xaqiiji Haa; Geli waxay xasuusan doontaa ilaa 15 kooxood muddo 30 maalmood ah.
La'aanteed xaqiijinta Login Microsoft (habka caadiga ah), oo leh kombuyuutarka fog ee ku biiray Login ama hybrid, waxaad sidoo kale ku xidhi kartaa adigoo tilmaamaya isticmaaluhu sida user@domain.com o AzureAD\user@domain.com. Taageeradu way kala duwan tahay iyadoo ku xidhan nooca wadajirka iyo nooca Windows ee macmiilka, laakiin had iyo jeer wata aqoonsi sax ah (password, smart card, ama Windows Hello for Business ee xaaladaha la taageeray).
MacOS iyo iOS, waxaad isticmaali kartaa kan cusub Windows App ka Microsoft (bilaash ayaa laga heli karaa App Store iyo Microsoft Store). Ku dar PC magac ahaan ama IP oo ku xidh; Appku wuxuu maamulaa shahaadooyinka wuxuuna bixiyaa khibrad casri ah. Android, ku rakib Codsiga Microsoft Remote Desktop ka Google Ciyaar, ku dar kombuyutarka oo dooro xidhiidhka si aad u gasho. Waxa kale oo aad arki kartaa sida ka maamul Windows 11 mobilkaaga.
Shabakadda mobilada? Waa wax jira, laakiin waxqabadkeedu waxa uu ku xidhnaan doonaa daboolida, daahitaanka, iyo ciriiriga. xiriir deggan waxay wax ka beddeshaa dareeraha iyo jawaabta mouse/keyboard-ka.
Helitaanka internetka: VPN ama gudbinta dekedaha
Marka xiriirku ka baxsan yahay shabakadaada deegaanka, waxaad leedahay laba waddo oo rasmi ah: isticmaal VPN ama habee soo gudbinta dekeda gudaha routerVPN waa ikhtiyaarka lagu taliyay ee amniga, maadaama ay sirayso taraafikada oo ay ka ilaaliso RDP inay soo gaarto internetka.
Isku xirka VPN Daaqadaha, aad Settings> Network & Internet> VPN oo taabo Ku dar isku xidhka VPN. Geli server-ka, borotokoolka (SSTP, L2TP/IPSec, IKEv2, OpenVPN, ama PPTP), iyo aqoonsiga uu bixiyo adeegaaga VPN. Marka la dhiso VPN-ka, fur MSTSC, geli magaca ama IP-ga kumbiyuutarka fog oo ku xidh sidaad LAN-ka ugu xidhi lahayd.
Soo gudbinta Dekedda (NAT). Haddii aad doorato inaad soo bandhigto RDP, aad uga taxaddar furaha sirta ah iyo NAT. Kumbuyutarka serverka, hubi inaad haysato a IP maxalli ah oo go'anGuryaha kaarka (TCP/IPv4), waxaad ku meelayn kartaa oo aad qeexi kartaa DNS. Qor cinwaankaaga guud ee IP (ka raadi "waa maxay cinwaanka IP-gayga") oo gal router-ka adiga oo isticmaalaya albaabka caadiga ah si aad u abuurto xeerka u gudbinta dekedda: borotokoolka TCP, dekedda dibadda 3389 ilaa dekedda gudaha 3389 oo tilmaamaya ciwaanka IP-ga PC-ga.
Si loo xaqiijiyo dejinta shabakadaha gudaha Windows, fur Run (Win+R), ku qor cmd oo orod ipconfig si aad u aragto IPv4 Address iyo Gateway. Kadib abuurista xeerka, macmiilka isticmaal IP-ga guud ee router-ka (ama a Dynamic DNS haddii aad mid leedahay) inaad ku xidho. Xusuusnow in dekedda caadiga ah ee RDP ay tahay TCP 3389.
Haddii ISP-gaagu u xannibo dekedaha sababo ammaan dartood, la xidhiidh taageerada ama tixgeli VPN. U soo bandhig 3389 internetka waxay ku lug leedahay khataro haddii qaabaynta aan la adkayn.
Amniga lagu taliyay: NLA, Passwords, Updates, iyo 2FA
U oggolow NLA server-ka si uu u qasbo xaqiijinta ka hor fadhiga. Xaqiijinta Heerka Shabakadda waxay yaraynaysaa aagga dushiisa ee ka dhanka ah weerarrada iswada iyo isku xidhka qarsoodiga ah.
Adeegso furaha sirta ah ee adag ee gaarka ah akoonnada gelitaanka fog oo si joogto ah u beddel. Iska ilaali inaad dib u isticmaasho aqoonsiga inta u dhaxaysa adeegyada oo qiimee maamulayaasha sirta ah si loo maareeyo.
Ka dhig kuwa cusub ee Windows iyo RDP macaamiisha. Nabadgelyadu waxay hagaajisaa hab-maamuuska iyo nuglaanta qaybaha nidaamka. Hubi Cusbooneysiin Windows iyo sidoo kale cusboonaysiinta abka Desktop-ka fog ee dhammaan aaladaha; waxayna tixgelisaa siyaasadaha maxalliga ah hagaajinta amniga nidaamka.
Haddii ururkaagu isticmaalo 2FA, ku hirgeli halka lagu taageerayo (tusaale ahaan, marka lagu xaqiijinayo akoon shirkadeed). Xaqiijinta laba-tallaabo ah wuxuu ku darayaa lakab dheeraad ah oo wax ku ool ah oo ka dhan ah tuugada sirta ah.
Xusuusnow qufulka fadhiga fog: Markaad xidhid fadhiga fog, Calaamadaha Microsoft Geli iyo hababka aan furaha lahayn (sida furayaasha FIDO) laguma taageero furitaanka shaashadda; Kulanka si ula kac ah ayaa loo jaray si dib loogu qiimeeyo siyaasadaha Helitaanka Shuruuda ah marka dib loo xiro.
Cilad-bixinta: Khaladaadka Caadiga ah iyo Sida loo Hagaajiyo
Firewall. Haddii aysan ku xirmin, hubi Oggol abka abka Windows Firewall oo xaqiiji in Desktop-ka fog uu leeyahay sanduuqyada hubinta ee Shabakadaha Gaarka ah iyo kuwa Dadweynaha. Kombiyuutarka fog ma shaqaynayo Waxa kale oo ku jira tillaabooyinka caadiga ah ee lagu ogaanayo cilladaha. Waxaad sidoo kale dib u kicin kartaa xeerka con Enable-NetFirewallRule -DisplayGroup "Remote Desktop".
Adeegyada Mashiinka fog, fur Adeegyada, hel Adeegga Mashiinka Fog, oo xaqiiji in xaaladdu socoto. Ku bilow haddii la joojiyo in la aqbalo kalfadhiyada soo socda.
Magaca martida vs. IP. Mararka qaarkood xallinta magaca waa fashilantay. Isku day inaad ku xidho ciwaanka IPV4 Ku hubi IP-ga ipconfig oo u isticmaal si ku meel gaar ah si aad meesha uga saarto dhibaatooyinka DNS.
ISP iyo dekedaha. Haddii aad dibadda ka soo xidhiidhinayso, bixiyahaagu waxa laga yaabaa inuu shaandheeyo dekedaha. Wac si aad u xaqiijiso ama u isticmaasho VPN. Hubi in gudbinta si sax ah loo sameeyay (TCP 3389 oo tilmaamaya PC IP-ga saxda ah).
IPv6. Deegaannada qaarkood, xirmada IPV6 ayaa laga yaabaa inay farageliso. Guryaha Adapter-ka, ka saar nooca Protocol Internet Version 6 (TCP/IPv6) oo dib u bilow kombayutarka. Isku day mar labaad xidhiidhka ka dib reboot.
Xisaabaadka. Ammaanka bilaa sirta ah ama siyaasadaha Koontada Microsoft qaarkood ayaa xannibi kara RDP xaaladaha guriga. U samee akoon maamul maxalli ah si aad u tijaabiso degdega ah. Ka dibna ku soo celi socodka shirkadda oo leh shahaadooyin la maareeyey iyo 2FA halka ay suurtagal tahay.
ogaanshaha. Ka hubi dhacdada daawashada (Windows Logs> Application and System) khaladaadka la xiriira TermService iyo xaqiijinta. Cusbooneysii wadayaasha shabakada ka macmiilka iyo serverka haddii aad ogaato goyn aan caadi ahayn ama latencies.
Ku xidhidhka Soo gal Microsoft: leh iyo la'aanba soo gal
Marka la soo galo Xaqiijinta Microsoft. Gudaha MSTSC, u gudub Ikhtiyaarada Sare oo awood u yeel Isticmaal koontada shabakada si aad u gasho kombayutarka fog (fog).enablerdsaadauth). Geli user@domain.com, Ku xidh oo oggolow martigeliyaha haddii ay cusub tahay. Geli xasuuso ilaa 15 martigaliyayaasha muddo 30 maalmood ah ka hor inta aanad mar kale weydiin.
Iyada oo aan la aqoonsan Entra (hab dhaqameed). Xitaa haddii kumbuyuutarka fog uu ku biiro Entra ama hybrid, waxaad isticmaali kartaa aqoonsiga qaabka user@domain.com o AzureAD\user@domain.com. Qaabaynta La Taageersan yahay:
- Windows 10 2004+ Macmiilka Gelitaanka Aaladda: Password ama Smart Card.
- Windows 10 1607+ macmiilka aaladda ku soo gal: erayga sirta ah, kaarka smart, ama Windows Hello for Business (shahaadada kalsoonida).
- Windows 10 1607+ macmiilka aaladda isku-dhafka ah: erayga sirta ah, kaarka smart, ama Windows Hello for Business (aaminadda shahaadada).
ogolaanshaha gelitaanka Haddii isticmaaleyaal badan ay ka soo galayaan RDP kombuyuutar ku biiray, ku dar kooxda Isticmaalayaasha Desktop Fog ee deegaanka. CMD waxaad si otomaatig ah uga dhigi kartaa xisaabaadka Entra ee shakhsi ahaaneed.
Haddii aad raadinayso meel fog oo la isku halayn karo, si wanaagsan loo qalabaysan yahay, isku dar aasaaska (awood u siinaya RDP, NLA, firewall saxda ah iyo oggolaanshaha isticmaalaha) dhaqamada wanaagsan (VPN ee internetka, furaha sirta ah, cusbooneysiinta, iyo 2FA halka ay khusayso). Iyada oo leh MSTSC ama apps-ka rasmiga ah ee macOS/iOS/Android Waxaad heli doontaa qulqul raaxo leh; iyo haddii kiiskaagu u baahan yahay wax ka duwan, xalalka sida AnyViewer, AirDroid, ama TSplus daboolaya xaaladaha halka RDP asalka ah aysan gaari karin.
Qora xamaasad leh oo ku saabsan adduunka bytes iyo farsamada guud ahaan. Waxaan jeclahay inaan aqoontayda ku wadaago qoraal, taasina waa waxa aan ku samayn doono blog-gan, ku tusi doona dhammaan waxyaabaha ugu xiisaha badan ee ku saabsan qalabka, software-ka, qalabka, isbeddellada tignoolajiyada, iyo in ka badan. Hadafkaygu waa inaan kaa caawiyo inaad u dhex marato adduunka dhijitaalka ah si fudud oo madadaalo leh.