- Khangela imigaqo-nkqubo (GPO), iinkonzo, kunye nomphulaphuli we-RDP ngaphambi kokuba uchukumise i-firewall ukwahlula umthombo wokuthintela.
- Jonga i-port 3389, imithetho esebenzayo kunye nezatifikethi; ungquzulwano okanye isatifikethi esaphukileyo sithintela umphulaphuli ekumameleni.
- Los errores de autenticación (CredSSP, NLA, permisos) son tan frecuentes como los de red; alinéalo con actualizaciones y grupos.
- Ukuba awukwazi ukuvula izibuko, sebenzisa isango le-RDP kunye ne-MFA okanye i-broker ekhuselekileyo ephepha ukuveza izibuko 3389.
Ukuba uqhagamshelo lweDesktop ekude ngesiquphe iyeke ukusebenza, ungacinga ukuba ludonga lomlilo okanye umatshini ucinyiwe. Kodwa nge-RDP, oyena nobangela usoloko... iinkqubo zenethiwekhi, GPOs, okanye iinkonzo ezivala izibuko 3389 Ngaphandle kwesilumkiso. Iindaba ezilungileyo: ngokulandelelana okucwangcisiweyo kweetshekhi, unokwahlula iphoso kwimizuzu.
Kwesi sikhokelo uya kufumana iinkqubo ezisebenzayo neziqinisekisiweyo zokuxilonga kunye nokulungisa imigaqo-nkqubo, imigaqo, kunye nolungelelwaniso oluthintela iRDP ukungena Windows, zombini kwizixhobo zasekhaya kunye nezikude, kwinethiwekhi yenkampani, VPN kwaye nkqu emafini njenge Uphando Cloud. Uya kubona kwakhona indlela yokujongana neempazamo zokuqinisekisa (CredSSP), izatifikethi, ukungqubana kwezibuko, iDNS kunye nokusebenza, kunye nezinye iindlela xa ufuna into esebenza ngaphandle kokuvula amazibuko.
Ufunyaniswa njani ukuba umgaqo-nkqubo okanye uthungelwano luvalela iRDP
Phambi kokuba uchukumise irejistri okanye i-firewall, luluvo oluhle lokuqinisekisa ukuba ingxaki ikuyo ukufikelela kuthungelwano, ukuhluza, okanye ukugcwalisaIndlela emfutshane eluncedo esuka kwenye ikhompyuter kukuvavanya ukufikelela kwizibuko usebenzisa izinto eziluncedo ezifana ne-psping: psping -accepteula <IP-equipo>:3389. Ukuba ubona Iqhagamshela kwi... ngeenzame ezingaphumeleliyo, okanye a Ikhompyuter ekude yalile unxibelelwano lwenethiwekhi, ibonisa ukuqhawuka kwebhlokhi ephakathi okanye ukucima kwenkonzo.
Uvavanyo oluvela kwimithombo emininzi (enye i-subnet, enye i-VPN, inethiwekhi yasekhaya, okanye i-4G) ukubona ukuba ukuvalwa ukukhetha ngokwecandelo okanye ngemvelaphiUkuba iyasilela macala onke, mhlawumbi ivalwe yiperimeter firewall okanye iWindows ngokwayo. Ukuba iyasilela kuphela kwicala elinye, khangela uluhlu lwemvume. ACLs kunye nemithetho firewall esiphakathi.
Jonga ngokukhawuleza imeko ye-RDP kunye neenkonzo zayo
Qala ngokuqinisekisa ukuba inkqubo ekude ivumela uqhagamshelo lweDesktop ekude kunye nokuba iinkonzo ziyasebenza; oku kulawula ngaphandle iziseko nge ezimbini okanye ezintathu imiyalelo.
Kumatshini wasekhaya, ukwenza i-RDP ilula njengokuvula iiSetingi nokuyivula. Idesktop esekude (jonga usebenzisa Windows 11 Idesktop ekudeKulawulo olusulungekileyo (okanye ukuba i-UI ayiphenduli), jonga ilog ku: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server y HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services. Ixabiso fDenyTSConnections kufuneka ibekhona 0 (ixabiso loku-1 lithetha ukuba i-RDP ikhubazekile).
Ukude, qhagamshela kwiregistry yenethiwekhi ukusuka kwiRegistry Editor (Ifayile> Xhuma kwiRejistri yeNethiwekhi), hamba ngeendlela ezifanayo, kwaye uqinisekise ukuba akukho mgaqo-nkqubo onyanzelisa ukuvimba; ukuba ibonakala fDenyTSConnections=1, yitshintshe iye ku-0 kwaye uqaphele ukuba Ibuyela kwi-1 emva kwemizuzu embalwa. (uphawu lweGPO exhaphakileyo).
Khangela kwakhona ukuba iinkonzo eziyimfuneko ziyasebenza kuzo zozibini iziphelo: Iinkonzo zeDesktop ezikude (IiNkonzo zeXesha) y Iinkonzo zeDesktop ekude uMsebenzisi weMode yoMsebenzisi weSibuko kwakhona (UmRdpService)Ungayenza kwiinkonzo.msc okanye nge PowerShellUkuba ufuna izikhokelo zeenkonzo zokuhlela, qhagamshelana Guqula iinkonzo kwi-Windows 11Ukuba ubani uvalelwe, Yiqalise kwaye uzame kwakhona.
Injongo yoMgaqo-nkqubo weQela (GPO): Indlela yokubhloka kunye nendlela yokuvula
Xa i-RDP ingenako ukwenziwa isebenze ngojongano, okanye ixabiso lobhaliso libuyiselwe umva, iphantse yanyanzeliswa ngumgaqo-nkqubo. Ukuchonga le nkqubo kumatshini ochaphazelekayo, sebenzisa lo myalelo ulandelayo kwi CMD phezulu gpresult /H c:\gpresult.html kwaye ivula ingxelo; phantsi Uqwalaselo lweKhompyutha > Iitemplates zoLawulo > Amacandelo eWindows > Iinkonzo zeDesktop ezikude > Iseshini yeSeshini yeDesktop > Uqhagamshelo Umyalelo ukhangela Vumela abasebenzisi ukuba baqhagamshelane bekude besebenzisa iiNkonzo zeDesktop ekude.
Ukuba ubona ngathi KhubazekileJonga ingxelo ukuze ufumanise ukuba yintoni na IGPO iphumelele kwaye isebenza phantsi kowuphi umda (isayithi, isizinda, okanye i-OU). Phinda ujonge ukuba njani Ukujoyina idomeyini kwiWindows Ukuba ukrokrela iingxaki zesizinda, ukusuka kwiGroup Policy Object Editor (GPE) kwinqanaba elifanelekileyo, tshintsha loo mgaqo-nkqubo Inikwe amandla okanye ayilungiswangakwaye kumaqela abandakanyekayo, inyanzelisa isicelo nge gpupdate /force.
Ukuba ulawula ngeGPMC, ungasusa ikhonkco kuloo GPO kwi iyunithi yombutho apho isebenza kwizixhobo ezichaphazelekayo. Khumbula ukuba ibhloko yavela SOFTWARE\ Imigaqo-nkquboI-GPO iya kuphinda ibhale irejistri de ube ucima okanye uhlele ipolisi.
Kumatshini okude, velisa ingxelo efanayo nakumatshini wasekhaya, ukongeza iparamitha yekhompyuter: gpresult /S <nombre-equipo> /H c:\gpresult-<nombre-equipo>.htmlnto leyo eya kukunika ubume bedatha obufanayo ukuphanda i-GPO engunobangela.
Umphulaphuli, izibuko kunye neengxabano ku-3389
Nokuba umyalelo uchanekileyo, ukuba umphulaphuli weRDP akamameli, akuyi kubakho seshoni. Kwi-PowerShell ephakamileyo (yasekhaya okanye ekude nge Enter-PSSession -ComputerName <equipo>), iphumeza qwinsta kwaye uqinisekise ukuba ungeno lukhona rdp-tcp kunye nombuso MamelaUkuba ayibonakali, umphulaphuli unokonakala.
Indlela ethembekileyo ibandakanya ukuthumela ngaphandle isitshixo somphulaphuli kumatshini osempilweni onenguqulelo efanayo yeWindows: HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-TcpKwikhompyuter echaphazelekayo, gcina ikopi yemeko yangoku nge reg export "HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-tcp" C:\Rdp-tcp-backup.reg, isusa isitshixo (Remove-Item -Path 'HKLM:\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-tcp' -Recurse -Force), ifayile ye.reg elungileyo ibalulekile kwaye iphinda iqale iTermService.
Emva koko, khangela i-port. I-RDP kufuneka imamele 3389. Phuma HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\<listener> kunye nexabiso PortNumberUkuba ayisiyiyo i-3389 kwaye awunaso isizathu sokhuseleko sokuyitshintsha, buyela ku-3389 kwaye uqalise kwakhona inkonzo.
Ukubona iingxabano, baleka cmd /c 'netstat -ano | find "3389"' kwaye uqaphele i-PID ekwimo UKUMAMELAEmva koko, kunye cmd /c 'tasklist /svc | find "<PID>"' Chonga inkqubo. Ukuba akunjalo TermServiceLungisa kwakhona loo nkonzo kwelinye izibuko, yikhuphe ukuba ayiyomfuneko, okanye, njengendlela yokugqibela, ukutshintsha izibuko leRDP kwaye uqhagamshele ngokukhankanya i-IP: izibuko (ayilunganga kulawulo olusemgangathweni).
Izatifikethi zeRDP kunye neemvume zeMachineKeys
Omnye unobangela oqhelekileyo wonxibelelwano olungaphelelanga yi isatifiketi seRDP esaphukileyo okanye esingaphindangaVula isatifikethi se-MMC seakhawunti yeqela, yiya ku Idesktop ekude > Izatifikethi kwaye ususe isatifikethi se-RDP esazisayinayo. Qala kwakhona inkonzo yeDesktop ekude kwaye uhlaziye: entsha kufuneka yenziwe ngokuzenzekelayo.
Ukuba ayiveli, jonga iimvume ze C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys. Qinisekisa ukuba BUILTIN\Abalawuli babe nolawulo olupheleleyo kwaye Wonke umntu thembele kwi Ukufunda nokubhalaNgaphandle kwezi ACLs, Windows ayikwazi ukwenza isitshixo kunye nesatifikethi esifunekayo kwi-RDP.
Windows Firewall kunye novavanyo loluhlu
Kubathengi kunye neenkqubo zeseva, Windows Defender I-firewall idinga imithetho evulekileyo yangaphakathi ye-RDP. Jonga umthetho owakhelwe ngaphakathi "Idesktop ekude-iNdlela yoMsebenzisi (TCP-In)"Nge netsh advfirewall firewall show rule name="Remote Desktop - User Mode (TCP-In)"; kufuneka iVunywe, isetyenziswe kwiiProfayili ezifanelekileyo, iProtocol ye-TCP kunye ne-Local Port 3389.
Ukuba ulawula nge-interface, yiya kwiWindows Defender Firewall> Vumela usetyenziso okanye uphawu kwaye ukhethe "Idesktop ekude" ngaphakathi I-Privado (kwaye kuLuntu kuphela ukuba unesizathu esicacileyo). Kwi-"Advanced Settings", qinisekisa ukuba umgaqo ongenayo we-TCP 3389 uyasebenza. Njengenyathelo lokusombulula ingxaki (kungekhona kuthungelwano lukawonke-wonke), ungacima okwexeshana i-firewall ukujonga ukuba uxhulumaniso luyadlula kwaye ngoko nangoko uluvule kwakhona.
Ukusuka ngaphandle, eyona ndlela icacileyo yokuqinisekisa ukufika kwizibuko yi-psping: psping -accepteula <IP>:3389Ukuba ufumana 0% ilahlekoIsitaki sothungelwano kunye ne-firewall zivumela uqhagamshelwano. Ukuba yonke into 100% ilahleko o walaLixesha lokunyuka uye kwinethiwekhi ephakathi / i-firewall okanye uphonononge i-NAT, i-VPN kunye izihluzi phakathi kwamacandelo.
Uqinisekiso: iziqinisekiso, iCredSSP kunye neemvumelwano
Chwetheza iimpazamo "Iinkcazi zakho khange zisebenze"Okanye"I-akhawunti ayigunyaziswanga ukuba ungene kude"Zihlala zincinci ukulungiswa: khangela igama lomsebenzisi/igama lokugqitha lifomathwe ngokuchanekileyo (umzekelo, DOMINIO\usuario), icima naziphi iziqinisekiso eziphelelwe lixesha kwi Umphathi wecredential kwaye uqinisekise ukuba i-akhawunti ayivaliwe.
NgeCredSSP, ukuba isixhobo asikabikho ngoku, ukusilela koqinisekiso olunzima ukutolika kuya kwenzeka. Qiniseka ukuba unayo IiWindows zihlaziyiwe kubo bobabini umxhasi kunye nomamkeli. Njengendlela emfutshane kwiindawo ezindala, unokwenza kwi-GPO "Vumela unikezelo lweziqinisekiso ezigciniweyo ngoqinisekiso lwe-NTLM-kuphela kweseva" okanye, ngobhaliso, seta. AllowEncryptionOracle a 2 en HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System.
Ungalibali ubulungu beqela: kumaqela angengo-domain, yongeza iakhawunti kuyo Abasebenzisi beDesktop ekude Ukusuka kuLawulo lweKhompyutha> Abasebenzisi beNdawo kunye namaQela. Kwidomeyini, qinisekisa ukuba ubulungu buhambelana ne Umgaqo-nkqubo kavimba weefayili ngokwenene phambi kokuba uchukumise nantoni na.
DNS, VPN, kunye nezinye iinguqu zenethiwekhi
Ukuba uqhagamshela ngegama kwaye idilesi ye-IP yenginginya itshintshile, umxhasi usenokuba usakhomba kwidilesi endala ngenxa ye-caching. Coca nge ipconfig /flushdns kwaye, ukuba iyaqhubeka, sebenzisa i IP ethe ngqo Ukulawula ingxaki yesisombululo, khangela ukuba iadaptha isebenzisa i iseva ye-DNS echanekileyo kwi Iphaneli yokulawula > Iziko leNethiwekhi > Guqula useto lweadaptha.
Nge-VPNs, abanye ababoneleli bavimba okanye baqondise kwakhona i-port 3389, okanye bayifake ngendlela ephikisana ne-RDP encryption. Nqamula i-VPN kwaye uvavanye, okanye ulungelelanise umgaqo-nkqubo ukuvumela i-RDP. ukwahlula okanye “vumela usetyenziso”. Ukuba ubona iziphazamiso okanye izikrini ezimnyama, yehlisa i-MTU ngenqaku elinye: netsh interface ipv4 show subinterfaces ukuyibona kwaye netsh interface ipv4 set subinterface "Ethernet" mtu=1458 store=persistent ukuyilungisa.
Ukuba umxhasi ubonakala engaphenduli kodwa iseshoni isekhona, ingaba ngumba isisombululo okanye ubungakanani befestileKuQhagamshelwano lweDesktop ekude (mstsc), cofa u-"Bonisa iiKhetho" kwaye kwi-Display thebhu hambisa isilayida sesisombululo okanye uvule isikrini esigcweleyo; ezininzi "uqhagamshelwano olungasebenziyo" lulungisiwe. ukulungisa ifestile.
Imiba eyaziwayo kunye neenkonzo zefu: Windows 11 24H2 kunye neLifu likaGoogle
Amatyala axeliwe apho kudityaniswa nge-RDP ukuya 11 Windows 24H2 Iseshini iyayeka ukuqalisa, ngakumbi kwi oomatshini ababonayo Ngokuphathelele i-hypervisor. Ezinye iipetshi zexeshana azikasonjululwanga; gcina inkqubo yakho ihlaziywe ngokupheleleyo kwaye uvavanye ividiyo ye-hypervisor/vGPU abaqhubi, njengoko ngamanye amaxesha ingxaki ilele kwi-hypervisor. itshathi yeRDP okanye isitakhiUkuqalisa kwakhona umamkeli kubuyisela okwethutyana uqhagamshelo, kodwa isisombululo siquka uhlaziyo oluqokelelweyo kunye nabaqhubi/i-firmware.
KwiNjini yeKhompyutha kaGoogle, ukongeza kwigama lokugqitha leWindows (lisethe ngokutsha ukusuka gcloud okanye i-console), khangela umgaqo default-allow-rdpUluhlu lwemithetho kunye gcloud compute firewall-rules list kwaye, ukuba ilahlekile, yenza enye nge gcloud compute firewall-rules create allow-rdp --allow tcp:3389. Qinisekisa ukuba usebenzisa i Lungisa idilesi ye-IP yangaphandle nge gcloud compute instances listUkuba i-OS ayilungiswanga kakuhle, yifikelele nge interactive serial console kwaye uphumeze:
• Inkonzo: net start | find "Remote Desktop Services" (ukuba ayikho, net start "Remote Desktop Services")
• Yenza i-RDP isebenze: reg query "HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server" /v fDenyTSConnections (0 kulungile; ukuba 1: reg add ... /d 0)
• Indawo yomlilo: netsh advfirewall firewall show rule name="Remote Desktop - User Mode (TCP-In)" (kodwa, netsh firewall set service remotedesktop enable)
• Umaleko wokhuseleko: reg add "HKLM\System\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp" /v SecurityLayer /t REG_DWORD /d 1 /f
• NLA ehlala ikho: reg add ... /v UserAuthentication /t REG_DWORD /d 0 /f
Uxilongo oluphezulu: iziganeko, inethiwekhi kunye nezixhobo
Xa oku kungasentla kungayicacisi ingxaki, lixesha lokujonga iziganeko kunye nomkhondoVula uMjongi weMsitho kwaye ujonge kwiiLogi zeWindows> Isicelo kunye neNkqubo, kunye nakwimithombo Iinkonzo zeSithili-RemoteConnectionManager y Microsoft-Windows-RemoteDesktopServices-RdpCoreTS kwiimpazamo ezicacileyo kumzamo ngamnye.
Kwinethiwekhi, bamba ngeWireshark kwaye ucofe nge tcp.port==3389 Jonga i-SYN/SYN-ACK imiqondiso, ukusetha kwakhona, okanye uqhagamshelo oluphakathi luhla. Ukuba akukho traffic, ibhloko isendleleni; ukuba kukho i-traffic kwaye yehla ngexesha lothethathethwano lokhuseleko, rhanela... ukungangqinelani koguqulelo oluntsonkothileyo/NLANjengovavanyo olukhawulezayo lokuvuleka kwezibuko, telnet <IP> 3389 (Ukuba idibanisa, izibuko liyafikeleleka.) Ungasebenzisa nezinye izinto eziluncedo ezifana usebenzisa i-ntttcp kwiWindows ukuvavanya ukusebenza kunye nokugcwala.
IMicrosoft ibonelela ngeRDP Protocol Monitor/Analyzer, kwaye kwiWindows Server 2012/2012 R2, Isixhobo sokuxilonga iiNkonzo zeDesktop ekude Ukuchonga imiqobo. Ukuba awukwazi ukunikela ixesha kumbandela ngamnye ovela rhoqo, lungiselela izikripthi: netsh int ip reset && netsh winsock reset yenethiwekhi, kunye taskkill /F /IM mstsc.exe && net stop termservice && net start termservice ukucima iiseshoni zeRDP kunye nokuqalisa iinkonzo kwakhona (isilumkiso: nciphisa iiseshini ezisebenzayo).
Edume kakubi "RDP - Kwenzeke impazamo yangaphakathi"
Lo myalezo wegeneric uhlala ufihla a ukungahambi kakuhle kokhuseleko phakathi komxhasi kunye nomncedisi. Jonga ukuba inqanaba lofihlo kunye nenqanaba lokhuseleko lihambelana (kwi-GPO: Ukhuseleko lomamkeli weSeshini > "Funa ukusetyenziswa komgangatho othile wokhuseleko" kwaye ukhethe I-RDP (ukuba i-TLS iyasilela). Ukuba umncedisi ufuna i-NLA kwaye umxhasi akakwazi, ukukhangela okwethutyana i-NLA kwiiPropati zeSistim> Ukude ukujonga ukuba le yimbangela.
Ezinye izinto: abathengi beRDP abaphelelwe lixesha ngokuchasene neeseva ezintsha, imiba trust domain (Ukudibana kwakhona nedomeyini ngamanye amaxesha kusombulula oku), okanye iinkangeleko zokhuseleko ezinyanzelisa uguqulelo oluntsonkothileyo olungaxhasiyo kwesinye isiphelo. Kumava oMthengi, vula uqhagamshelo kwakhona oluzenzekelayo kunye ne-cache eqhubekayo ye-bitmap yeeseshoni ezinokuqina ngakumbi.
Xa impazamo ivele emva kohlaziyo lweWindows kwaye akukho nanye kwezi zingasentla zinengqiqo, cinga ngokubuyisela eso siqwenga sithile (Iphaneli> Update Windows > Imbali > Khipha uhlaziyo), emva kokubonisana neeforam zobugcisa (umzekelo, imisonto ye I sibini ngoLwesibili) ukuba yingxaki eyaziwayo.
Ukusebenza, umthamo kunye nemultimedia
Ukuba isikhalazo asikho "asiyi kudibanisa" kodwa "siyi-choppy," qalisa ngokunciphisa umthwalo kumxhasi we-RDP: phantsi. isisombululo kunye nobunzulu bombalaKhubaza imvelaphi, izimbo zokubonwayo, kunye nokugudiswa kwefonti kumava thebhu. La manyathelo anciphisa ukusetyenziswa kwe-bandwidth kunye nokuphucula i-latency.
Kwiseva, khangela i-CPU/RAM/Diski kwi Umlawuli weMisebenziUkuba ikumda wayo, nayiphi na iseshoni yeRDP iya kusilela. Khumbula ukuba iWindows Desktop ivumela kuphela iseshoni yaxeshanyeIWindows Server ineemvume ezimbini zolawulo ezihlala zikhona kwaye ifuna iilayisensi ezongezelelweyo zeRDS CAL.
Ngomsindo, misela umxhasi we-RDP> Izibonelelo zeNgingqi> I-Audio ekude ukuba "Dlala kule khompyutha", kwaye uqinisekise ukuba iinkonzo Windows Audio kunye ne "Windows Audio Endpoint Generator" ziyasebenza. Kwividiyo enzima, iRDP ayisoloko ilungile; ezinye iindawo ezindala zikhankanya i-RemoteFX, kodwa namhlanje kungcono ukhethe I-adaptive codec kunye nokukhawuleza kwangoku okanye uvavanye izixhobo ezenzelwe ukuba umchachazo graphic
Iimeko ezikhawulezayo kunye nezisombululo ezicacileyo
Ukuba iWindows Defender ivala uqhagamshelo Windows 10/11, yiya kwiWindows Defender Firewall> Vumela isicelo kwaye uvule "iDesktop ekude" ngokujonga iibhokisi zaBucala (kunye noLuntu kuphela xa kufanelekile), cofa ukwamukela kunye novavanyo. Kwiziganeko ezininzi zehlabathi lokwenyani, ezi ukucofa kathathu Bebengumahluko phakathi kokuphoxeka kunye nempumelelo.
Ukuba ufuna ukutshintsha izibuko kuba enye inkonzo isebenzisa i-3389, hlela HKLM\System\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp > iPortNumberUmzekelo, beka i-3390, qalisa kwakhona inkonzo kwaye uqhagamshele njenge IP:3390Khumbula ukuhlengahlengisa firewall kunye NAT kwela zibuko litsha.
Iindlela ezizezinye kunye namasango xa ungakwazi ukuvula izibuko
Kuthungelwano apho ukuvula i-3389 kungenakwenzeka (okanye awufuni ukuyiveza), qwalasela izisombululo nge umlamli welifu ukuphepha imithetho yezandla kunye neenkathazo ze-DNS: I-RealVNC Connect inikeza i-SSO kunye nolawulo oluphakathi; Idesktophu ekude yeChannel Isimahla kwaye kulula ukuba sele usebenzisa iChrome; TeamViewer kunye Nawuphi na umsebenzi Babeka phambili ukukhululeka kokusetyenziswa kunye nesantya se-cross-platform. Kukho kwakhona ii-suites ezifana TSplus, ejolise ekomelezeni ukhuseleko kunye nokwenza lula ukufikelela okukude kwinqanaba.
Ukuba uya kuhlala kwi-RDP, ukhetho olukhuselekileyo kukuseta a Isango leDesktop ekude (iSango le-RD)Funa i-NLA kunye ne-MFA, kwaye unqande ukufikelela nge-VPN okanye i-IPSec. Le yindlela eqhelekileyo yokubonelela ngofikelelo ngaphandle kokuvula izibuko 3389 kwihlabathi.
Ukhuseleko olulungileyo kunye nezenzo zokuthotyelwa
Yomeleza iRDP ngokuvula NLAUkusebenzisa iiprothokholi ze-encryption zanamhlanje kwaye, ukuba isakhelo sakho siyayifuna (GDPR/HIPAA), eyenza imigaqo-nkqubo eyomeleleyo ye-cryptography (umzekelo, i-FIPS) kunye neziqinisekiso ezisebenzayo ezikhutshwe yi-CA ethembekileyo. Vimba ukuvezwa koluntu, umda kwiinethiwekhi zabucala / iiVPNs, kwaye unyanzelise Ukongezwa kweMFA kwisango okanye kumthengisi.
Ekugqibeleni, gcina iliso kwi logsFaka iipetshi rhoqo kwaye wenze uphicotho lwamaxesha athile. Uninzi lweengxaki ze-RDP zinokuthintelwa ngendibaniselwano yale miqathango. iipolisi ezilungileyoimithetho ecacileyo yomlilo kunye nokubeka iliso.
Umbhali onomdla malunga nehlabathi le-bytes kunye netekhnoloji ngokubanzi. Ndiyakuthanda ukwabelana ngolwazi lwam ngokubhala, kwaye yile nto ndiza kuyenza kule bhlog, ndikubonise zonke izinto ezinomdla malunga nezixhobo, isoftware, ihardware, iindlela zetekhnoloji, kunye nokunye. Injongo yam kukukunceda uhambe kwihlabathi ledijithali ngendlela elula neyonwabisayo.