Remote office - network level authentication

Hello people, hope you can help!

I have a laptop running vista professional and a desktop running vista ultimate.  On my desk, I activated remote desktop access and can rdp on the desktop from the laptop when the median option button is selected "allow connection of computers running any version of office to distance"... however... I obviously want to use network level authentication to be sure that I can access the office using my connection wireless laptops.

When I try to do, I get the usual message, saying that "the remote computer requires network level authentication, that my computer does not support.    Curiously, when I try the other direction (from the desktop to the laptop), I have access! How is it?  I checked the windows features that are installed and they seem to be the same...

Hello again,

I double checked everything and both machines as set identical upward (as far as RD is concerned).  Both machines now have a user account called RemoteDesktop with a password, the two machines are set to "Notify me" and that the two computers are on the same workgroup.  Everything seems very strange to me.  If one of the PC did not support NLA, then it should not work at all, so it makes no sense that it works one way and not the other.

That being said, What are the risks of a lower level running on a home network? The network is secure (or as secure as possible never) so what are the differences between the two settings?

On your LAN House I would be worried about this. Its pretty hard to fake an address on the network under your control especially if your behind a router (with firewall function) and your wireless network is secured. I would, however, high encryption necessary and always warn the client for a password, sign in.

http://theillustratednetwork.MVPs.org/RemoteDesktop/RDP6ConfigRecommendations.html#host

FWIW, I regularly connect to desktop computer XP Pro to my wife and a Windows Home Server with Remote Desktop [DRC] a computer laptop Vista Ultimate or Win7 RC1 and Ubuntu. None of those taking support NLA mode server host/DRC. The Ubuntu laptop does not support the NLA in client mode DRC.

That said, is the customer who cannot not configured like that? I believe that this is the default condition.

http://theillustratednetwork.MVPs.org/RemoteDesktop/RDP6-09.jpg

Also, just for the sake of the information that the failing client shows the extent of the support NLA. The built-in client for Vista should indicate this.

http://windowshelp.Microsoft.com/Windows/en-us/help/ea4680d1-6962-463b-B29B-351efa676f9e1033.mspx

I assume that your market SP1 or SP2 on the Vista client, which is a failure and have not tried to download and upgrade the remote desktop client.

There is also this lengthy thread which can be interesting. Not exactly your question but interesting nonetheless. Bottom line is to make sure that the time is correct on all machines. There is also a procedure to remove the server/host certificate which you could do a test.

http://social.answers.Microsoft.com/forums/en-us/vistanetworking/thread/4ab6c1ba-13ed-4b0a-b5ba-601e2b0a28d7

MS - MVP Windows Desktop Experience, "when everything has failed, read the operating instructions.

Tags: Windows

Similar Questions

  • Error: Remote connection software does not support network level authentication.

    Original title: REMOTE ACCESS

    I have windows 7 ultimate and the remote connection software supports network level authentication.

    Isn't he supposed to in this version?

    Thank you

    It should be, but there are several remote desktop client updates that came out in the last 6 years as of the optional updates on Windows Update, so I would check that you have all the control panel.

  • No network level authentication supported Win 7 Home Premiun SP1

    I work from home with a new company and now I am not able to connect to the remote desktop, because he says that the NLA is not supported on my system. Trying him I don't have the option to do so. My previous employers, team COMPUTER messed with some settings to allow me to connect to their servers, but I don't know what they were doing and how to fix it. :(

    Hello

    Thank you for visiting Microsoft Community.

    NLA authentication is an authentication method that can be used to improve the Remote Desktop Session host server security by requiring that the user be authenticated to the Remote Desktop Session host server until a session is created.

    Authentication complete NLA authentication of users before you establish a remote desktop connection and the logon screen appears. This is a more secure authentication method that can help protect the remote computer from malicious users and malicious software. The benefits of the NLA authentication are:

    • It requires fewer remote computer resources initially. The remote computer uses a limited number of resources before authenticating the user, rather than start a remote desktop connection complete as in previous versions.
    • It can help provide better security by reducing the risk of denial of service attacks.

    According to the description of the problem, you can not connect to the desktop (RDS) remotely and get the NLA error is not supported on your system. I suggest you to return the items listed below and see if it helps.

    Error of level of authentication with a remote desktop connection between Windows 7 machines on the network

    Configure the authentication level network for remote desktop Services connections

    What types of connections remote desktop should I allow?

    Hope that the information provided is useful. Let us know if you have any concerns related to Windows. We will be more than happy to help you.

    Kind regards

  • Authentication of network level on the XP Machine to access to the Terminal

    I tried remote, connect to windows xp machine to windows server 2008 r2 server that is installed on VMWare. When I want to open a session, an error is faced with "Network Level Authentication. Any tool to fix Microsoft. I tried the procedure but no benefit below

    To enable the NLA in machines XP; First, install XP SP3, and then modify the registry settings on the XP client computer to enable NLA

    1. Click Start, run, type regedit and press ENTER.
    2. In the navigation pane, locate and then click the following registry subkey: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa
    3. In the Details pane, right-click the Security Packages and then click on edit.
    4. In the value data box, type tspkg. Let all the data that are specific to other providers of shared services, and then click OK.
    5. In the navigation pane, locate and then click the following registry subkey: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders
    6. In the details pane, right-click SecurityProviders, and then click on edit.
    7. In the value data box, type c:\windows\system32\credssp.dll. Let all the data that are specific to other providers of shared services, and then click OK.
    8. Exit Registry Editor.
    9. Restart the computer.

    Activate Server to allow connection of the XP machines

    1. Click Start, make a right click my computer and select Properties
    2. Click on advanced system settings
    3. Go to the Remote tab and uncheck all the connection of computers running Office remotely with authentication NLA

    This issue is beyond the scope of this site and must be placed on Technet or MSDN

    http://social.technet.Microsoft.com/forums/en-us/home

    http://social.msdn.Microsoft.com/forums/en-us/home

  • Connection of remote offices SPA3102

    My boss just bought two SPA3102 VoIP routers in an attempt to set up a VoIP connection to a remote office, thus avoiding expensive international calls.  I'm looking for advice on setting up.

    This is the ideal configuration, we're after.  Box, it is in the seat, and it is connected via the RTC port on a phone line (in fact the PBX).  His IP address is 192.168.32.8 (we are without using the routing of each box function, then the two boxes are connected to the network via the WAN port, with the side LAN not used at all).  Any incoming call on the telephone line must be connected directly on the phone connected to the box of two.  There is no phone connected to the box one.

    Box 2 is in remote desktop. For testing purposes, its IP address is currently 192.168.32.9.  He got a telephone connected to the telephone port, and the PSTN port is connected to a standard telephone line.  We want the phone to use the RTC line by default, but if the user dials 9 then, we wish the appeal directed to the PSTN line on box a (i.e. PBX.), where it can dial into a PBX it seeks.

    The offices are connected by a virtual private network, so there is no NAT anywhere to worry.

    I have a problem in this place, what with the instruction light manual and confusing options, so any help much appreciated!

    Here are the settings I've worked. I have omitted some.

    Head office

    WAN configuration:

    Connection type: static IP address

    Static IP: 192.168.32.8

    Subnet mask: 255.255.255.0

    Enable WAN Web server: Yes

    Line 1:

    Activate the line: no

    PSTN line:

    Activate the line: Yes

    Use outbound Proxy: no

    Register: no

    Call without Reg: Yes

    Call for years without Reg: Yes

    Numbering plan 1: (P1[email protected] >)

    (causes the call to transfer to the other box after a delay of one second)

    Enable VoIP to PSTN Gateway: Yes

    PSTN to activate the VoIP gateway: Yes

    PSTN through line 1 ring: no

    PSTN response time: 0

    PSTN Ring through delay: 0

    Remote Desktop box:

    WAN configuration:

    Connection type: static IP address

    Static IP: 192.168.32.9

    Subnet mask: 255.255.255.0

    Enable WAN Web server: Yes

    Line 1:

    The line activation: Yes

    Register: no

    Call without Reg: Yes

    Appeal of ABS without Reg: Yes

    Auto RTC backup: Yes

    Dial plan: (0 x<:@gw0>|) <>xx. <:@gw0>| <7:192.168.32.8:5061>)

    (This operation transfers the call to the seat on numbering 7 9 box gets an outside line, any number beginning with 0 is also formed through the PSTN line)

    PSTN line:

    Activate the line: Yes

    Enable VoIP to PSTN Gateway: Yes

    PSTN-to-VoIP gateway enable: no

    I have a problem on the left: calls to the phone remotely (both by the PBX and telephone line remote) are very quiet.  I played with the settings of Gain PSTN SPA to compensate, but I set the remote zone to its maximum of 12 and it is still too quiet, so I think that there is a problem elsewhere.

  • How to install an office network share drive?

    I would like to know what is the best way I can configure a share of office network drive so that everyone can access and store their working papers, so we're all on the same disc?

    Objective:
    I want to the control user that has read/write access to the files on the shared disk, but I don't want to create a separate user on the host computer for each person. Also be able to access the drive via the vpn for home/away.
    Current configuration:
    Our network configuration:
    Building (several companies housed under the same roof) > wired Ethernet > suite > router > 10-15 devices (computers laptops, computers, phones, printers, etc.) wireless
    Share drive host computer:
    -Ultimate windows 7
    -Connect to a router via gigabit ethernet
    -A a static ip address lan internal 192.168.1.xxx.
    -1 TB drive on here to be used as a shared drive
    -2 TB drive will be backup to a separate computer that is not used
    All computers run windows 7 Professional/ultimate
    Wireless router is also assigned a static ip address of the office building.
    I don't want to use the homegroup, but perhaps workgroup would meet my needs? I can't currently office and vpn remote access into the host computer, but only one user can access the drive of course if they are not in the Office in this way.
    I can map the drive network internally, but not outside. I re - map every time at home if I want to use the VPN.
    Ideas or suggestions for this type of configuration, a NAS system?

    Hey Joe,

    I would recommend you to view the query on the TechNet Forum which, I am sure, will help you better. Click on a question and post your question.

    You can check the link to the request message:

    http://social.technet.Microsoft.com/forums/en-us/category/w7itpro

    Email us if you have any further questions. We will help you.

  • Implementation of remote offices, VMware ESXi

    Hi people, I hate you bug with what he could have been asnwered before, but I couldn't find an asnwer very clear here. Any help/advice is much apprecaited. So, here's the deal:

    We plan blown full virtualization (Server + VDI) to our datacenter and 3 remote sites. Data Center (HQ) and 1 remote office are located in Europe, 1 in North America and 1 Office in Hong Kong. All remote sites are with about 5 to 10 local non computer users. HQ has about 90 users and staff. Clearly, we want to put everything in place so that it can be managed on the Wan. We will make IPsec VPN site-to-site with each remote site through Cisco ASA and ISR routers/appliences.

    In HQ, we implement the Server Blade HP (chasis c7000) of several ProLiant G7 and EMC Clariion CX4 storage.

    For remote offices, we plan to have a local server (2 CPUs) and local storage. Internet connections are good DSL, but nothing complicated. On the road, we could look at MPLS in the light of the video and voice conference, but for now it's off the table. Because we want to deploy VDI in remote offices, we want to have clones the on local servers so that they are independent of WAN. We run a file sharin, DC, print server in terms of orders OS Server mainly.

    1. How is back-up to be managed from remote desktop to virtual offices at Headquarters? You can just save changes/deltas or is it always?

    2. what type of products VMware, we need in remote offices? VSphere Standard would do for everything what we need (remote management, backup remote VM etc.)?

    3. is it possible to have remote users forwarded to use their VD through the WAN of local server failure? Software that manages this part?

    4 any other recomendatiosn or best tips in our case here?

    Thanks again for any advice you have as we are very pleased to start this, but sure looks like a lot of work... and a few uncertainties.

    Jim

    Hello

    1. How do you distribute patches and OS updates to the remote VDs via WAN?

    You can use AUVS to install packages in the comments. In this way, everything is done on the spot.

    2. with a ThinApp structure in a VDI infrastructure how do you deliver applications, their patches to remote desktop (stream or MSI or?)? You have to have ThinApp servers etc. at the remote office or what is really the best way to handle this?

    ThinApp is a bit different and has their servers for the deployment of ThinApps. I think you should transfer as you ThinApps the patch... You can ask this question in the forums ThinApp.

    3. does anyone know a really good guide to set up an "office in a box" and it deployment?

    I have unfortunately seen documents for internal use. However, ones I've seen are usually at least 1 usually 2 boxes 2U with necessary storage locally or on a NAS with at least Gigabit switch. Usually, I suggest at least 2 boxes depending on the load. Ideally something easy to carry and move... If there was a 2 or 4 blade blade chassis, which would be the ideal...

    All licenses is managed at the Headquarters Office "in a box" being shipped to the remote desktop that is almost ready to go. A few tweaks remote and viola, you have the office. Don't forget to leave you an administrative VM on a VPN tunnel to your desktop to the remote location.

    Worst case scenario involves some generic desktop computers at HQ for all applications that do not need local data.

    4. licenses for virtual desktops (VMware View) must be purchased by the local office, or by given headquarters he is managed by vCenter HQ and the fact that it is on another continent?

    It's really up to you. But if it was me I would centralize management and "Chargeback" with the Agency.

    Best regards
    Edward L. Haletky VMware communities user moderator, VMware vExpert 2009, 2010

    Now available: url = http://www.astroarch.com/wiki/index.php/VMware_Virtual_Infrastructure_Security'VMware vSphere (TM) and Virtual Infrastructure Security' [/ URL]

    Also available url = http://www.astroarch.com/wiki/index.php/VMWare_ESX_Server_in_the_Enterprise"VMWare ESX Server in the enterprise" [url]

    Blogs: url = http://www.virtualizationpractice.comvirtualization practice [/ URL] | URL = http://www.astroarch.com/blog Blue Gears [url] | URL = http://itknowledgeexchange.techtarget.com/virtualization-pro/ TechTarget [url] | URL = http://www.networkworld.com/community/haletky Global network [url]

    Podcast: url = http://www.astroarch.com/wiki/index.php/Virtualization_Security_Round_Table_Podcastvirtualization security Table round Podcast [url] | Twitter: url = http://www.twitter.com/TexiwillTexiwll [/ URL]

  • VI on a BladeCenter S for remote offices

    Hi everyone, it's a matter of design because I don't know much about BladCenter S.

    After reading this article, I become curious of this technology (http://it20.info/blogs/main/archive/2008/11/14/162.aspx) because it really can solve some problems, especially in remote offices.

    My questions are:

    (1) is the redundant eth switch? Article that I linked above, it seems that it is but to read the IBM documentation looks that all EPF blades are related to bay1 only, so only one switch eth (which would make not much sense);

    (2) is the internal memory, support for vmware? Could not find information on that, nor what hw config is required to share LUNS with blades;

    (3) is it possible to have 4 network adapters and interfaces 2 sas (from FC interfaces for it matters) without developing the blade server? I can't expand the blade increases the number of cards you can add but then each blade will take twice as much to place in the chassis, which is not good in a small bladecenter as the S

    I suppose to use HS21 XM blades just like I would on another chassis. Ibm documentation I found here (http://www.redbooks.ibm.com/abstracts/sg247523.html) and here (http://www.redbooks.ibm.com/abstracts/sg247682.html?Open) was very detailed, but confused about what I mentioned in my questions.

    Yes, ETH that a switch can be used, but then you get only half of the network connections.  Each blade is divided between the i/o modules, so if you have expansion for the blades ethernet card, and only have 1 switch, and then you get only half of the available network adapters.

    The IBM SAS HBA card is in the HCL: http://www.vmware.com/resources/compatibility/search.php?action=search&deviceCategory=io&productId=1&keyBasic=ibm+sas+&maxDisplayRows=50&key=ibm+sas+expansion&release%5B%5D=-1&datePosted=-1&vid=&did=&svid=&ssid=

    And Yes, I believe the extension ethernet 2 ports and the sas of maps extension and in a format that can fit into the PCI - X slots without the blade who need to take two slots, according to the guide.  I'm sure your IBM representative can go over this with you as well.

    -KjB

  • 4 Apple TV on my office network, get conflicts of IP addresses between them despite being assigned to the reserved addresses.

    4 Apple TV on my office network, get conflicts of IP addresses between them despite being assigned to different addresses reserved in DHCP

    Although it seems that they realize and correct this means my network notifify me of the conflict and that can mean more than 30 emails per day... and on a long weekend which means 90 more e-mails to remove after it making sure it is the same 4 mac address having problems... How can I do that, go away

    Given that you are reserving DHCP addresses, I suppose that you have set the ATV to get automatically addresses. That should work.

    Are there opportunities that they are waking up on WiFi and Ethernet switching? On may switch from one WiFi network to another?

    Do you really need fixed IPs?

    The alternative to the reserved addresses would be to reduce the size of the DHCP pool and set the address, staticly ATV.

    Just by the way, have you given the names of different ATV? This is necessary for the Apple protocols.

    Can you identify the versions of your ATV, see identify your model of Apple TV - Apple Support?

  • Printer network 160 E - studio does not work in my office network

    Hi Toshiba team,

    I ' v got a Toshiba e-studio 160 network printer/scanner/fax in my office and I want everyone in the office (network) has access to the printer and scanner functions of the e-studio without using a computer 'server' that must be connected to the local parallel port of the printer. In other words, the printer is connected over TCP/IP and a RJ45 cable to my switch to the office.

    The printer configured with a valid IP address, but in my Office I havn't no matter what WINS server, the configuration field is empty and unused ones. I tried several different methods, but I can't access the printer via TCP/IP. Just the 'PING' command works correctly. I expected that the printer appears in the Windows file sharing folders, but it doesn't. Furthermore, all my computers are equipped with Microsoft Windows XP. I read somewhere in a Board of Directors that a guy has solved this problem by using a program called "P2P", but I couldn't find something like that.

    With original Toshiba drivers, it is only possible to exploit this local printer or on a print share Windows function, but I don't want that a machine is running all the time.

    I hope someone can help me with my problem.

    Best regards
    Michael

    Since it is a forum only for computers laptop Toshiba and Options, I doubt that someone will be able to help you.

    But I found a special page to Toshiba for printers and copiers.
    http://copiers.Toshiba.com/support/index.jsp

    You might find a few details here.

    Good luck

  • WRT54GS Setup on my office network

    I work for a large company and want to reinstall my wireless router, so I move me from one room to the other with my laptop without plugging in our network. I had it put in place before, but had to spend an hour with technical support to set up the router.  Recently, I had to reset the password and lost all the settings.

    I can get to connected to the establishment with the password by default but have no idea how to set it up. No matter what I try, I get no conectivity when I try to redirect the browser to the internet.

    Yes, I know I should leave our network COMPUTING staff put in place, but they get all bent when I want to extend my wireless configuration access even if it is password protected. Can someone help me out here?

    Thank you

    Well, I use the router wireless wrt54G V8. Works the same as yours?

    I just went by the addition of this router as a network wireless access point on my local network.

    It's really quite easy once I realized a few things.

    First, you will need an IP address for the router to entrust your IT
    people. If you are not going to be able to get it, I'm not sure what you can do.

    IP address of the router is 192.168.1.1 default. Assuming you reset him

    router by default, simply connect a cable to one of the router's Ethernet

    ports (not the Internet port) and connect the other end to a laptop. The router will

    power to the laptop with a IP address and you will be able to run a browser for

    http://192.168.1.1 to access the router administration pages. The connection on

    my router was admin with a password of admin, but I've seen people from Linksys

    say other things, so this cannot be true for all models of router.

    Once connected to the administrative pages, you can assign any IP address

    you want to the IP address of the router. You will see the default 192.168.1.1 in

    There now.

    Assuming that your IT people assign you a static IP address of 192.168.135.37 (or

    whether it is), then you'll want to assign as the IP address of the router in the

    administration pages. Note that once you do this, you will not be able to talk

    the router via your mobile phone directly connected any longer. You will need to

    Always connect the router to your office network - via one of the Ethernet ports

    (not via the Internet port).

    You may need to reset the router after changing his IP address, even if

    I don't have to do it on my own.

    With the router connected to your office network, you should be able

    to access it from any PC connected to the network in exercise, by

    Navigate to the IP address assigned by IT (in my example 192.168.135.37

    (See above).

    Now you can activate the wireless network, assign a security mode.

    passwords/pass phrases, etc.

    When wireless devices negotiate security of your wireless router,

    they will act as if they were connected directly to your desktop in

    network.

    I can provide more details, if you wish. Perhaps by PM?

    Let me know,

  • Just added a windows system 7 to my office network have permission issues accessing the Server 2003. Connects but does not trust the server

    I just added a windows system 7 to my office network. It will connect to the server. QuickBooks can access data on the server, but Microsoft Access is not - says that the file is located outside the intranet.

    Hello

    Thanks for posting the request in the Microsoft community!
    Your question is more complex than what is generally answered in the Microsoft Answers forums. It is better suited for Windows Server on TechNet forum
    http://social.technet.Microsoft.com/forums/en-us/category/WindowsServer

  • Samsung Mobile USB Remote NDIS Network driver problem woth Windows 8

    Hello

    I've updated since a Windows 7 PC to a Windows 8 BPC.

    Previously, with Windows 7, I had no problem USB modem to connect to the Internet via WIFI to my Samsung Galaxy S3 (or 3G).
    With Windows 8 However, I can only attach a few minutes and then the connection is cut. When I watched the driver by using the Device Manager on my PC, I saw the following error message:
    "Samsung Mobile USB Remote NDIS Network has a driver problem".

    I used PC troubleshooting functionality that does not set it and gave me the following message is displayed:
    "The mobile Samsung remote NDIS device USB network adapter lives driver or problems with the material, do not set".

    I uninstalled the driver and reconnected my phone via USB, USB port checked attaching who re-installed the driver.
    I then the internet connection on my PC for a few minutes before it shuts down again and the process repeats.
    I have looked on various online forums and some suggest that the driver in using and liked?

    There is no problem of connection and access to my phone via USB, just storage attached to connect to the internet using my phone signal.

    I have also contacted Samsung who advised me to contact Microsoft.

    Please can you help me?

    Thank you very much
    Ian Nugent

    iannugent,

    In case you still have questions, because I had the same problem myself, the pilot would have to stop when the registry was refreshing.  However, he could not find a driver dependent and would not completely load the driver, that "off" your internet connection.

    The solution is to

    -Open your device manager,

    -Find the SAMSUNG NDIS device under network adapters

    -Right-click on the troubled device and select Update driver software

    -Select Browse my computer for software driver

    -Select Let me pick from a list of drivers for devices on my computer

    -Select Remote NDIS based Internet sharing devices and click Next

    .. .that should be your dependent on engine and you should have no problem thereafter I've not had any since.  In addition, there was no reboot needed.  Windows figured it all as soon as I installed this driver dependent

    I hope this helps.

    The e

  • Change the view office networks

    I'm changing my view office network, i.e. taking them out of the Nexux 1KV and put back them on the standard switch.  It seems that I can't change the image of «replica...» ».  Do I need to recompose the workstations?

    It's graceful in my opinion, maybe a powershell script to change via the network on the clones, until you're ready to recompose.

  • had a problem with the remote office, locking of the time-out and the remote host

    I have two computers that both are connected to the network of my company.  Both computers have Windows XP Professional Version 2002 Service Pack 2 installed.  Both computers were set up for remote desktop connection.

    Computer A is a desktop unit and computer B is a portable device.

    Computer A, I can run the remote desktop to computer B without any problem.

    When I run the desktop remotely from computer B to computer A:
    -I see the typical login screen
    -After I typed the user name and password, and then after about 30 seconds, I got the message delay: "the remote connection has expired.  Please connect to the remote computer again. »
    -at this point, the computer A's lock-up, does not have a mouse or a keyboard. the only way out is turning the device off.

    I spent hours on the website of microsoft looking for possible solutions, but can't find.

    According to some suggestions, I have disabled "Symantec Endpoint protection" and "Microsoft Office Communicator", but it did not help.

    Any help is appreciated.

    Check out this thread

    http://en.community.Dell.com/forums/t/19271963.aspx

Maybe you are looking for