Turn On or Enable Remote Desktop on Windows Vista
Remote Desktop is a Windows service that allowed you to remote access or remote control the system from another computer. Useful when you want to connect to your home PC from office, or an IT administrator wants to manage remote computer, remote Desktop has been incorporated or built into modern Windows operating system, including Windows Vista, although Remote Desktop Server service is not enabled by default. To let a Windows Vista system to accept incoming Remote Desktop connection, we need to turn on or enable Remote Desktop.
There are three ways to turn on and enable Remote Desktop service in Windows Vista:
Enable Remote Desktop via Windows Vista Graphical User Interface (GUI)
- Click on Start button, then open Control Panel to select the System applet. Alternatively, right click on Computer icon and select Properties on right click contextual menu.
- Click on the Remote Settings link in the left-hand task pane.
- You will see System Properties window with Remote tab selected.
- Select the radio button of either “Allow connections from computer running any version of Remote Desktop (less secure)” or “Allow connections only from computer running Remote Desktop with Network Level Authentication (more secure)”. If you’re using a Windows Vista RD clients to initiate the Remote Desktop session, you can safely select the later option. If you’re using non-Vista OS such as Win XP or Win2K, not sure or not understand, select the first option. See below note for more details.
- Next, click on the Select Users button. You need to choose all non-administrative users that you intend to grant remote logon rights for them to remotely access or control this computer.
- In the Select Users dialog, click on the Add button.
- Type the name of the user you want to grant Remote Desktop access rights to, and then click OK.
- Repeat above 2 steps to add more users.
- Click on OK twice to save the settings.
Turn on Windows Vista Remote Desktop via Group Policy
To enable the Remote Desktop functionality, navigate to the following location in local computer policy or domain group policy (network wide effect to apply across the entire Active Directory network, and Windows Vista machine is needed in order to process the template files):
Computer Configuration \ Administrative Templates \ Windows Components \ Terminal Services \ Terminal Server \ Connections
At the location, find the policy named Allow users to connect remotely using Terminal Services, and set it to Enable.
To require the use of RDP version 6 and NLA, browse to the following location in local computer policy or domain group policy (restrictions and functions same as above):
Computer Configuration \ Administrative Templates \ Windows Components \ Terminal Services \ Terminal Server \ Security
In the folder, search for Require user authentication using RDP 6.0 for remote connections, and set it to Enable.
To control which users have access to the Vista system via Remote Desktop, you can add the authorized users to Remote Desktop Users group on the local machine, while those denied access should be removed from the list.
Enable Remote Desktop on Windows Vista via the registry
- Open registry editor.
- Navigate or browse to the following key:
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Terminal Server
- Locate the fDenyTSConnections subkey, and change the DWORD value to 0.
- To enforce the use of RDP 6.0 and NLA, navigate to the following key:
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Terminal Server\WinStations\RDP-Tcp
- Locate the UserAuthentication subkey, and change the DWORD value to 1.
- Exit registry editor and restart the computer to make the changes effective.
Once you have enabled or turned on Remote Desktop, Windows Vista will automatically open the required and necessary ports in Windows Firewall to listen and accept any incoming Remote Desktop connections.
Note: Network Level Authentication (NLA) is a new protocol in Remote Desktop to provide more secure connections where NLA will authenticate the user prior to a full remote desktop connection being established. With this feature, Remote Desktop uses fewer resources on the remote machine during the initial handshake state, and helps to prevent RDP-related denial of service attacks. NLA is built into the Windows Vista Remote Desktop client which is version 6 of the terminal services client. Remote Desktop Connection (Terminal Services Client 6.0) can be downloaded and installed on Windows Server 2003 SP1 and Windows XP SP2 machines.
Related posts:
- Easily Maintain Multiple Remote Desktop Connections with visionapp Remote Desktop (vRD)
- Connect to Remote Computer using Specific Non Standard Port using Remote Desktop Connection Client
- Get and Enable Windows Vista Aero Glass Transparency Effect and Desktop Windows Manager (DWM)
- Disable and Turn Off (or Enable or Turn On) Data Execution Prevention (DEP) in Windows Vista
- Disable or Turn Off (Or Enable and Turn On) Windows Vista Internet Explorer 7 (IE7) Protected Mode
[...] Although most versions of Windows operating system such as Windows 2000, 2003, 2008, XP and Vista does come packaged with Remote Desktop, however it’s disabled by default. Turning on and enabling the Remote Desktop via local console is easy, where Microsoft provides similar GUI (graphical user interface) in all editions of Windows (refer to guide on enable Remote Desktop in Vista). [...]
It surprises me the number of people that do not know about windows' stock remote desktop product. For many, the stock windows app is not robust enough, but I think these cases only represent a portion of the total. Many people simply choose out-of-box software, such as logmein or proxy networks.
Hello all,
I was hoping that someone could help me with this.
We use a VPN at work to access our computers remotely (from Home), and we just upgraded last summer to Vista Business.
Problem:
We are unable to access any Vista Business computers once they get rebooted.
Fix:
You have to login to the computer and go to the "remote" tab and "toggle" the Remote Desktop settings. What I mean is you have to click "Don't allow connections to this computer" then click apply. Then you have to click "Allow connections from computers running any version of Remote Desktop"
Well this can be a real pain, if your computer get rebooted and you are not at work you have to drive into work to "toggle" the Remote Desktop settings.
I was going to try to run a batch file with the RDP and fDenyTSConnections reg entries change on startup, however I tried to do it manually and I still have to use the GUI to change the settings. See where I am going with this?
Any suggestions would be great!
Thanks,
Eddie
This article should say that its advice applies only to "Vista Business" or "Vista Ultimate", but will not work on "Vista Home" since that OS doesn't support incoming RDC connections. The Remote tab of its System control panel will show only an option for Remote Assistance, not Remote Access.
[...] Remote Desktop or RDP service is a free yet useful tool to remotely log on to remote computer and gain full access and privileges as if user is in front of local console. Remote Desktop is also known as Terminal Services. It’s useful if the server, or PC is located miles away in remote location, and frequent trip to the site to troubleshoot, configure or manage the system is not a viable option. Although most versions of Windows operating system such as Windows 2000, 2003, 2008, XP and Vista does come packaged with Remote Desktop, however it’s disabled by default. Turning on and enabling the Remote Desktop via local console is easy, where Microsoft provides similar GUI (graphical user interface) in all editions of Windows (refer to guide on enable Remote Desktop in Vista). [...]
Isn't there a way to add specific users / user groups to the "remote desktop users" group on the Vista machines in my network? It takes to much time to add them manually to each and every client… A group policy setting or something like it would be what i need.