Disable Remote Desktop Protocol on Windows machines

I

The Disable Remote Desktop Protocol on Windows Machines Worklet is a PowerShell-based solution designed to assist system administrators in disabling the remote desktop feature on Windows operating systems. Remote desktop connections allow users to remotely access and control other computers, which can be useful for managing multiple devices or providing technical support.

However, these connections can also pose security risks if unauthorized users gain access. By using this Worklet, you can ensure that your organization's devices are protected from unwanted remote desktop access.

Why would you use the Disable Remote Desktop Protocol on Windows machines Worklet?

Organizations may need to disable remote desktop services on their devices for various reasons, such as reducing potential security risks, ensuring compliance with industry regulations, or maintaining a consistent environment across all devices.

Using this Worklet saves time and effort by automating the process of disabling remote desktop protocol (RDP) instead of manually applying changes to each device individually.

Components of the Disable Remote Desktop Protocol on Windows machines Worklet

The main components of this Worklet include an Evaluation script and a Remediation script. The Evaluation script checks whether RDP is already disabled on a given device by examining its registry key value at HKLM:\SYSTEM\CurrentControlSet\Control\Terminal Server\fDenyTSConnections.

If the desired registry value is not set, it returns a non-compliant status. The Remediation script then sets the appropriate registry value to disable Windows Remote Desktop feature functionality.

How does the Disable Remote Desktop Protocol on Windows machines Worklet work?

When deployed through an Automox policy, this Worklet checks each targeted device's registry to determine if RDP is already disabled or not. If it finds that remote desktop protocol is enabled (non-compliant), it executes the Remediation script that adjusts the relevant registry setting to disable RDP.

What is the expected outcome when you use the Disable Remote Desktop Protocol on Windows machines Worklet?

Upon successful execution of this Worklet, RDP will be disabled on the targeted devices, preventing users from initiating remote desktop connections. This helps to protect your organization's network and data from potential security risks associated with unauthorized remote access.

This Worklet provides an automated solution for system administrators, reducing the time and effort required to enforce this policy across multiple devices.