A remote desktop connection (RDC) allows the user to log into a computer networked in the terminal services server. One can use the system remotely as they use it locally. This Remote desktop can be dangerous if it is not secured properly.
To tackle this problem of security, RDC uses Network level authentication that prevents RDC from unauthorized users. Authentication and authorization make sure that the correct user is granted access.
Let us have a look at what NLA is? How to enable and disable it? What are the functions of NLA? So, let us get started.
- What is Network Level Authentication?
- What Does Network Level Authentication Do?
- Enable Network Level Authentication
- How Do I Disable NLA on a Remote Computer?
What is Network Level Authentication?
A network-level authentication is a tool used for authenticating in the remote desktop services or Remote desktop connection. NLA is for assuring security while connecting the desktop remotely. It will ask for a security test like word captcha, tick the relevant pictures, or I am not a robot kind of stuff.
If one successfully authenticates, then it will allow connecting, otherwise, it will revert to the connection. The unauthorized user then cannot access the CPU resources, so it also offers Denial of Service (DoS) attacks before the remote session.
For this authentication, you must have NLA enabled on your desktop and then NLA will check the credentials of the client using a client-side security support provider. The user cannot connect unless he passes the authentication process.
What is NLA in Remote Desktop?
The concept of network-level authentication in Remote desktop is the same as its simple meaning. NLP in remote desktop means authentication of user or client before providing access to remote desktop.
Network-level authentication is best for those who want to restrict the connections. It makes the remote access process secure and protects your system from malicious attacks.
The Remote Desktop prefers network-level authentication because of its restrictions on full access. It limits the connections. It adds the protection feature to remote desktop connections. For NLA, the requirements are:
- Remote desktop connection 0.
- The client must use the OS that supports Credential Security support providers like Windows 7, Windows XP, or Windows Vista.
- The host server should run on Windows Server 2008 or 2008 R2.
Also, Read Network Vulnerability Methodologies
What Does Network Level Authentication Do?
So, after reading about what NLA is? What is NLA in remote desktop? You might think about what does NLA does. Here are some primary functions of Network Level authentication:
- It will display a prompt message to authenticate before a remote desktop connection.
- It provides security while connecting clients with the remote desktop.
- It checks the client’s credentials and approves them if allowed.
- Restricts the users and does not share full access to everyone. This avoids strangers entering the lobby.
- Users cannot join with expired passwords.
Enable Network Level Authentication
Enable Network Level Authentication Windows 2008 R2
The steps to enable network-level authentication in windows 2008 R2 are:
- Open Administrator Windows power shell
- Type credit for switching to Local group policy editor.
- Once you are in LGPE, go to computer configuration, then navigate in this way:
- Administrative Templates
- Windows Components
- Remote desktop services
- Remote Desktop Session Host
- Search for “require user authentication for remote connections by using Network Level Authentication,” and double click on it.
- Choose Enable option and save the changes.
Enable Network Level Authentication Windows 10
To configure the Network-level authentication in windows 10 while hosting a session, follow these steps:
- Run Remote desktop Host Server
- Go to its configuration by clicking on start, move to Administrative tools then remote desktop services. Here you will find an option of Remote Desktop Session Host Configuration, point to it.
- Navigate to the properties by right-clicking on the name of the connection
- Check the “Allow connections only from a computer running remotely with network-level authentication,” in the general tab.
- Once you complete these steps, follow the steps of group policy setting mentioned in the above section.
- Then press OK.
How to Enable Remote Desktop Windows 10?
First, provide access to the specific accounts and then follow these steps to allow the use of a Remote desktop connection.
- Start Control panel
- Point to System and security
- Click on Allow remote access under the system heading.
- Move to select the user and add using myLSU ID.
- Press Ok and finish.
- Once you finish this, you can perform the steps for enabling network-level authentication and your remote desktop sharing is ready.
How Do I Disable NLA on a Remote Computer?
There are several ways of disabling Network-level authentication. We have discussed some of them are:
Method 01: Disable NLA Using Properties.
- Click Windows and R, type sysdm.cpl, and enter. It will redirect you to system properties.
- Move to remote tab
- Uncheck “Allow connections only from computers running Remote Desktop with Network Level Authentication (recommended)”.
- Finally, Apply changes.
Method 02: Disable NLA Using Registry
- Again, click Windows and R, type Regedit in the prompted dialog box and enter. It will take you to the registry editor.
- Go to file, then connect network registry. Add details and connect.
- When you establish a connection navigate to this path: HKLM >SYSTEM> Current Control Set > Control > terminal Server > Win Stations > RDP-TCP
- Alter the valuer of the Security Layer and User authentication to 0.
- Switch to Power Shell, type restart-computer command, and execute it.
Method 03: Disable NLA Using Power Shell
- Press Windows and S, type power shell and run this command as administrator. It will launch Power Shell.
- As soon as you redirect to Power Shell, execute this command:
$TargetMachine = “Target-Machine-Name”
(Get-WmiObject -Cclass “Win32_TSGeneralSetting” – Namespac root\cimv2\terminalServices-ComputerName $TargetMachine – filter “TerminalName =’RDP-tcp”) .SetUserAuthenticationRequired (0)
Network level authentication is for secure remote desktop sharing. You cannot share your desktop with any random person, that’s why NLA is the best way to restrict strangers to enter your lobby. This method will ensure that the person accessing the remote desktop is allowed.
You would also enjoy reading about network segmentation.