5.4.5 External Security Protocols Used By RDP

RDP supports seven External Security Protocols: TLS 1.0 ([RFC2246]), TLS 1.1 ([RFC4346])<52>, TLS 1.2 ([RFC5246])<53>, TLS 1.3 ([RFC8446]),<54> the Credential Security Support Provider (CredSSP) Protocol [MS-CSSP],<55> RDSTLS (section 5.4.5.3), and RDS AAD Auth (section 5.4.5.4). All of the TLS variants and the CredSSP protocol require external infrastructure, such as authentication certificates (TLS and CredSSP) or Key Distribution Centers (CredSSP), to run successfully. These resources are opaque to RDP and left to implementers to provide, set up, and maintain.