Enable RDP via Intune

Question

Enable RDP via Intune

Hi,

I have 4 AzureAD joined Clients in a network. I want to enable RDP connection for my Admin Account to the Clients.
Myself will connect via VPN to the Network with the Clients.

How could I achieve this?

Br,
Johannes

Answer 1

Lu Dai-MSFT 22,916 Microsoft Vendor

@Johannes Ebner Thanks for posting in our Q&A. From your description, I know that you want to enable RDP connection for his admin account to AzureAD joined clients via intune. If there is any misunderstanding, feel free to let us know.

To achieve this operation, we need to configure remote settings and get the RDP configure file.
For configuring remote settings in intune, here are the detailed steps for the reference:

Go to Microsoft Endpoint manager admin center. Create a custom profile and deploy this profile to the device group you want.
Name : Set a name for this profile.
OMA-URI setting: ./Device/Vendor/MSFT/Policy/Config/RemoteDesktopServices/AllowUsersToConnectRemotely
Data Type: String
Value: <enabled />
After the profile deploy successfully, we can find the remote setting is changed.

To make clients get the RDP configure file, my thought is that we can create the RDP configure file in step2 in the link that RahulJindal improved. Then, put RDP configure file in an accessible location, write a PowerShell script to download this RDP configure file.

Hope it can help.

If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Luca Chana 6 Reputation points

2021-04-22T15:15:18.557+00:00

After making the policy in intune and seeing that it's applied to the devices, I see the remote settings are correct and enabled via control panel but when I look in the settings app it shows disabled and I cannot connect. It shows "Some settings are managed by your organisation" with "Enable Remote Desktop" as off? EDIT: To fix I had to run these powershell commands to enable RDP and open the firewall... Would think that intune would automatically open the firewall but ok.
Tiago Marques 1 Reputation point

2022-02-24T18:36:37.047+00:00

Thank you, really helped.. tho ive got some regards using NLA... how to enable it on intune? (endpoint manager)

Is there an OMA-URI for that too? I lost connection with my devices, theyre azureAD joined...

Thankx in advance
Lu Dai-MSFT 22,916 Reputation points Microsoft Vendor

2022-02-25T00:52:26.75+00:00

@Tiago Marques This setting "Require user authentication for remote connections by using Network Level Authentication" under Administrative Templates may make it.
Tiago Marques 1 Reputation point

2022-02-25T09:59:21.317+00:00

@Lu Dai-MSFT thank you, that did the job!

Cheers!
James Denis 1 Reputation point

2022-05-17T17:01:20.72+00:00

So I'm running into a similar issue as well, I was able to get remote assistance with NLA toggled on in advanced system settings but under settings>system>remote desktop : the icon is toggled off and grayed out.

Can you share what powershell commands you needed to run to enable RDP and add the firewall rule you needed to allow the incoming connections?

Answer 2

Vladimir Nekic 6

April 14, 2022 - Many changes have happened and many new addtions. Let get this thread updated for admins trying to find the 'EASY' button and not all this old trash.

Answer 3

Rahul Jindal [MVP] 7,271 MVP

Hi,

This will basically involve making changes in the rdp config file. There is a great blog written by Niall Brady that covers the entire process which you can find here. how-can-i-rdp-to-an-azure-ad-joined-windows-10-device

Answer 4

Johannes Ebner 226

@Lu Dai-MSFT

If I understand you correctly I only need 1 and 2 and then I should be already able to RDP to the Clients?

Lu Dai-MSFT 22,916 Reputation points Microsoft Vendor

2020-12-04T09:36:35.933+00:00

@Johannes Ebner Thanks for your response.
When you just do 1 and 2, you can use local admin account to RDP to the clients.

If you want to use AzureAD account to RDP to the clients, please continue to put RDP configure file in an accessible location and create a PowerShell script to download this RDP configure file.

Hope it can help.
Lu Dai-MSFT 22,916 Reputation points Microsoft Vendor

2020-12-08T06:10:42.48+00:00

@Johannes Ebner I am currently standing by for further update from you and would like to know how things are going. If you have any questions or concerns on the recent information I've provided you, please don't hesitate to let me know.

Thanks and have a nice day.

Answer 5

Johannes Ebner 226

@Lu Dai-MSFT , thanks for asking.

1 and #2 I got working, I am still struggeling with the RDP Config file.

Br,
Johannes

Enable RDP via Intune

8 additional answers

1 and #2 I got working, I am still struggeling with the RDP Config file.

Activity