question

CarlosDeLosRios-4902 avatar image
0 Votes"
CarlosDeLosRios-4902 asked ricardosolisvillegas-4678 commented

Remote Desktop - Credentials in plain text in Client

Hi

When a server is accessed via RDP from a PC, the credentials (user, password) remain stored (plain text) in the PC's lsass.exe process throughout the RDP session. Is there any chance to avoid this behavior without using "Credential Guard"? I want to avoid that a lsass dump (during RDP session) shows credentials in plain text

Thanks

remote-desktop-client
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

ricardosolisvillegas-4678 avatar image
0 Votes"
ricardosolisvillegas-4678 answered

Hello @CarlosDeLosRios-4902

Thank you for posting your concern.

I wonder if you have considered the following option below:

https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2012-R2-and-2012/dn781533(v=ws.11)

BR,

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

CarlosDeLosRios-4902 avatar image
0 Votes"
CarlosDeLosRios-4902 answered ricardosolisvillegas-4678 commented

Hi

We don't use RDS infrastructure. We connecto to windows server with RDP client directly

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi @CarlosDeLosRios-4902

You can either use a self-signed or CA on your RDP...

Thanks,

0 Votes 0 ·