You misunderstand.
RCG does not exist to keep people from connecting to a server.
Its purpose is to prevent that credentials are automatically entering the RAM of the remote machine when you use RDP.
If you choose to enter a password manually, of course there is no protection.
Scenarios using remote credential guards
Hi, I am new to remote credential guard (rcg) and would have clarification on the following scenario:
Scenario: Client side (Enable rcg i.e. apply GPO 'Restrict delegation of credentials to remote servers') ---rdp--> Server side (Not enable rcg i.e. not add reg key)
When I try to RDP to server from my client, I get the expected error message below:
However, the question is, when I click OK, it still allows me to enter credential and let me in the server side. Is there any configuration missing and how can I prevent user using RDP to remote server without rcg enable? Thanks.
1 answer
Sort by: Most helpful
-
MTG 1,231 Reputation points
2022-06-17T13:53:26.947+00:00