Details
Allows users to connect interactively to a remote computer. Remote Desktop and Remote Desktop Session Host Server depend on this service.
The recommended state for this setting is: Disabled.
Rationale:
In a high security environment, Remote Desktop access is an increased security risk. For these environments, only local console access should be permitted.
Impact:
Remote Desktop Services will not be available on the computer.
Solution
To establish the recommended configuration via GP, set the following UI path to: Disabled.
Computer ConfigurationPoliciesWindows SettingsSecurity SettingsSystem ServicesRemote Desktop Services
Default Value:
Manual
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Windows.