The following types of data transmissions might not be encrypted:
- Virtual Channels
By default, information that is passed through a virtual channel is not encrypted, but the program that is using the virtual channel can request that information be encrypted. After you install Windows 2000 Service Pack 2 (SP2) or later, data on Virtual Channels is encrypted.
- Initial Connection
The RDP protocol sends initial packets to establish the connection to the server and negotiate the level of encryption. These packets are not encrypted, but they do not contain any sensitive information.
- Server Certificate
The public certificate that contains the server name and some other non-sensitive information is not encrypted.
- Licensing Packets
One of the licensing information packets is not encrypted and contains the following information:
295080 Terminal Server Client Licensing Information Is Not Encrypted in the Network Packets
- Client computer name
- Client user name
- Client license information
- Clipboard and Redirected Printing
Clipboard and Redirected Printing use virtual channels and are always encrypted in both the client-to-server direction and the server-to-client direction in Windows 2000 SP2 and later.
Important When you connect to a Terminal Services session by using a virtual private network (VPN) connection, the data stream is encrypted. Also, any connection that you make by using Internet Security Protocol (IPSec) encrypts all the RDP traffic.
Artikelnummer: 275727 – Letzte Überarbeitung: 07.01.2008 – Revision: 1