Select the product you need help with
- Internet Explorer
- Windows Phone
- More products
Description of the Remote Desktop Connection 6.1 client update for Terminal Services
Article ID: 951616 - View products that this article applies to.
Support for Windows Vista Service Pack 1 (SP1) ends on July 12, 2011. To continue receiving security updates for Windows, make sure you're running Windows Vista with Service Pack 2 (SP2). For more information, refer to this Microsoft web page: Support is ending for some versions of Windows
This article discusses the Remote Desktop Connection (RDC) 6.1 client update that helps you use the new Terminal Services features. These features are introduced in Windows Vista and in Windows Server 2008 and are available from a computer that is running one of the following operating systems:
The RDC 6.1 client update contains the following features.
Terminal Services Web AccessTerminal Services Web Access (TS Web Access) is a service in Terminal Services that lets you make Windows Server 2008 Terminal Services RemoteApp (TS RemoteApp) programs available to users from a Web browser. You can also use TS Web Access to make a link available to the terminal server desktop. Additionally, TS Web Access enables users to open a connection from a Web browser to the remote desktop of any server or client computer to which the users have the appropriate access.
Remote Desktop Protocol (RDP) SigningRDP signing lets users sign RDP files and connections that are opened from TS Web Access. This feature helps users make sure that they are not using malicious RDP files to connect to potentially hostile terminal servers. You can also use Group Policy settings to specify that a user can only open signed files. This feature lets administrators make sure that users connect only to known resources.
Terminal Services EasyPrintTerminal Services Easy Print is the new printer redirection solution that was introduced in Windows Server 2008. Terminal Services Easy Print makes sure that client printers are always installed in remote sessions and that you do not have to install the printer drivers on the terminal server. Additionally, Terminal Services Easy Print addresses several other printer redirection issues that have been problematic in the past. Print queues are now enumerated per session, all printer properties are available in the remote session, and terminal server administrators can use a policy setting to redirect only the default printer. Terminal Services Easy Print is now the default printer redirection mechanism in Terminal Services. Therefore, no configuration is required to use this feature.
What is required to use Terminal Services Easy PrintTo use Terminal Services Easy Print Windows, Windows Server 2008 must be installed on the Terminal Services server. No additional drivers have to be installed, and no additional configuration has to occur. On the Terminal Services client, the user must be running Terminal Services client 6.1 and the Microsoft .NET Framework 3.0 with SP1.
Network Level AuthenticationNetwork Level Authentication (NLA) is a new authentication method that finishes user authentication before you establish a full Remote Desktop connection and before the logon screen appears. Windows XP SP3 uses RDC 6.1 to support NLA. This feature improves the authentication method, and it can help protect the remote computer from malicious users and malicious software. NLA has the following benefits:
(http://support.microsoft.com/kb/951608/ )Description of the Credential Security Service Provider (CredSSP) in Windows XP Service Pack 3
Server authenticationIn RDC 6.1, server authentication verifies that you are connecting to the correct remote computer or remote server. This security feature helps prevent you from connecting to a computer or server to which you did not intend to connect. This feature also prevents you from unintentionally exposing confidential information.
By default, server authentication is enabled for the connection. However, if you want to change server authentication settings, follow these steps:
Resource redirectionThe RDC 6.1 client helps you redirect Plug and Play devices that support redirection.
To redirect a Plug and Play device, follow these steps:
Terminal Server Gateway serversA Terminal Server Gateway (TS Gateway) server is a kind of gateway that enables authorized users to connect to remote computers on a corporate network. These authorized users can connect from any computer by using an Internet connection. TS Gateway uses the Remote Desktop Protocol (RDP) together with the HTTPS protocol to help create a more secure encrypted connection.
Earlier versions of RDC cannot connect to remote computers across firewalls and across network address translators. This is because port 3389 is typically blocked to improve network security. Port 3389 is the port that is used for Remote Desktop connections. However, a TS Gateway server uses port 443. Port 443 transmits data through a Secure Sockets Layer (SSL) tunnel.
A TS Gateway server has the following benefits:
Terminal Services RemoteAppTS RemoteApp is a feature of Windows Server Terminal Services that lets users on client computers connect to a remote computer and run programs that are installed on the remote computer. For example, employees may be able to connect to a remote computer at a workplace, and they may be able to run Microsoft Word on that computer. An administrator must publish the programs for users to be able to access the programs. The experience is the same as running a program that is installed on the local computer.
TS RemoteApp makes system administration easier because there is only one copy of a program to upgrade and to maintain instead of many copies that are installed on individual computers.
Monitor spanningRemote Desktop Connection supports high-resolution displays that span multiple monitors. However, the total resolution on all monitors must be under 4096 x 2048 pixels. The monitors must have the same resolution. Additionally, the monitors must be aligned side-by-side.
To make the desktop of the remote computer span multiple monitors, type Mstsc /span at a command prompt.
Visual improvementsRemote Desktop Connection now supports 32-bit color and font smoothing.
To enable 32-bit color, follow these steps:
Article ID: 951616 - Last Review: September 23, 2011 - Revision: 5.0