Blog

April 22, 2014 – 11:31 am

Antenna International Implements 2X ApplicationServer XG, Resulting in a Scalable, Low-Cost, High-Security Solution for the Organization.
Antenna International,  a leading provider of audio and multimedia visitor experiences, has achieved a significant increase in IT availability while …

Read the full story »
News

Latest 2X news, events and press releases

Products & Releases

Info on 2X products, new releases & developments

How-To Tech Library

Documentation on 2X products and private cloud computing

Sales & Training

2X pre-sales & sales articles, promotions and trainings

Virtualization Blog

2X staff and partners on virtualization topics

Blog » How-To Tech Library, News

2X How-To: Turning Off Network Level Authentication (NLA)

Submitted by on March 20, 2013 – 3:39 pm6 Comments
2X How-To: Turning Off Network Level Authentication (NLA)

2X How-To: Turning Off Network Level Authentication (NLA)

– Brought to you by the 2X How-To Tech Team –

Choose your Operating System below:

Windows Vista or Windows 7
Windows 8

Windows Server Without Session host role:
Windows 2008 or Windows 2008 R2
Windows 2012

Windows Server With Session host role:
Windows 2008 or Windows 2008 R2
Windows 2012

Windows Vista or Windows 7 and Windows Server 2008 or Windows Server 2008 R2 without RD Session Host Role

Note: These steps do not apply to Windows 2008 and Windows 2008 R2 with the RD Session host role

  1. Open the Control Panel. Ensure that the control panel is showing items by Category (i.e. not in Classic View). Click on System and Security and under System click on Allow remote access.
  2. Under the Remote Desktop group choose Allow connections from computers running any version of Remote Desktop (less secure).

Windows 8 and Windows Server 2012 without RD Session Host Role

Note: These steps do not apply to Windows 2012 with the RD Session host role

  1. Open the Control Panel. Ensure that the control panel is showing items by Category. Click on System and Security and under System click on Allow remote access.
  2. Under the Remote Desktop group un-tick the checkbox Allow connections only from computers running Remote Desktop with Network Level Authentication (recommended)

Windows 2008 and Windows 2008 R2 with RD Session Host Role

  1. On the RD Session Host server, open Remote Desktop Session Host Configuration. To open Remote Desktop Session Host Configuration, click Start, point to Administrative Tools, point to Remote Desktop Services, and then click Remote Desktop Session Host Configuration.
  2. Under Connections, right-click the name of the connection, and then click Properties.
  3. On the General tab, un-tick the Allow connections only from computers running Remote Desktop with Network Level Authentication check box. (For maximum compatibility ensure that Security Layeris set to Negotiate) 

If the Allow connections only from computers running Remote Desktop with Network Level Authentication check box is selected and is not enabled, the Require user authentication for remote connections by using Network Level Authentication Group Policy setting has been enabled and has been applied to the RD Session Host server.

  1. Click OK.

Windows 2012 with RD Session Host role

  1. On the RD Session Host server, open the Server Manager.
  2. Click on Remote Desktop Services, then under Collections click on the name of the session collection name that you want to modify. Click on Tasks and select Edit properties.
  3. Under the Security tab un-tick the option Allow connections only from computers running Remote Desktop with Network Level Authentication. (For maximum compatibility ensure that Security Layer is set to Negotiate)
  4.  Click OK.

6 Comments »

  • Jason says:

    Thank you for being so detailed. Worked perfect.

  • Tron says:

    Why would you not support NLA?

    Is there some measure that’s been taken that would make up for this seemingly desireable security measure?

  • Hi Tron, NLA support is currently being addressed and will be gradually rolled out on all our clients in the near future. Thanks for your patience.

  • Greg Wilkerson says:

    I’m getting this NLA message from the client and the NLA settings are turned off. I don’t have any troubles with some of the other RDP Android clients. Hmmm. I also don’t have problems connecting to some systems. Are there other server settings that could be preventing this connection? Hmm. More troubleshooting

  • Hi Greg, can you please send an email to support@2x.com and our technical support team will answer your query. Thanks.

  • Markus says:

    very good and informative page with pictures. This helped me to find where to disable Network Level Authentication on Windows Server 2012.

    Thanks

Leave a comment!

Add your comment below, or trackback from your own site. You can also subscribe to these comments via RSS.

Be nice. Keep it clean. Stay on topic. No spam.

You can use these tags:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

This is a Gravatar-enabled weblog. To get your own globally-recognized-avatar, please register at Gravatar.