With the rapidly developing situation around COVID 19, many businesses have started working from home. While there are many remote connection tools, Microsoft Remote Desktop is the most common option for accessing remotely, but it has to be properly secured. Below are some different security tips on how you can protect your own remote desktop connection :
Basic Security Tips for Remote Desktop
1. Use strong password
First, let’s address the obvious one. All of the users that you gave Remote Desktop access need to have strong passwords. There are a lot of bots constantly scanning the internet for vulnerable PCs running Remote Desktop, so don’t underestimate the importance of a strong password. Do not save your credential for remote connection, type in your password every time you connect remotely.
2. Update your pc and server
Make sure both your local and remote pc/server are up to date for security patch.
3. Install ant-virus software for your pc and server
Make sure both your local and remote pc/server have proper anti-virus software installed. For the works pcs/servers, they usually have security and compliance policies in place, however lots of users ignore the security on their local pcs.
4. Restrict access using firewalls
You can actually limit the access to your RDP using Windows firewall. This will restrict any connection attempts from IP address that is unknown to your scope.
5. Limit users who can log in using remote desktop
Though all administrators can use remote desktop, it’s not necessary for them to have access to it especially when they don’t need to. If remote desktop is not being used to administer system and networks, then it’s best for you to remove the administrative access temporarily.
Additional Security Tips for Remote Desktop
6. Change the listening port for Remote Desktop
Changing the listening port will help to “hide” Remote Desktop from hackers who are scanning the network for computers listening on the default Remote Desktop port (TCP 3389).
7. Open remote connection to dedicate IP address
Setup remote connection open to dedicate IP address if your router has the ability to do. This will prevent people from other places hack to your session.
8. Setup strict group policy
Setup strict group policy for unauthorised access.
9. Install third party software for additional security
Third party software like RDP Guard can be installed to enhance secure connection between local pc and remote pc/server.
There is more that can be done to enhance the security, talk to your IT department if you have any concern regarding your remote setup. VPN is another option if you do not have terminal server or additional pcs in the office.
Contact our friendly team today for an obligation free systems assessment.