Open wtf911 opened 6 years ago
Did you change the windows audit configuration under gpedit.msc ?
Yes I had tried that but it didn't help. I wondered if I was doing something wrong or it was a recent Windows change. I'm willing to troubleshoot if there's anything else you'd like me to try.
On Tue, Oct 2, 2018, 9:32 AM gabrielbasetti notifications@github.com wrote:
Did you change the windows audit configuration under gpedit.msc ?
[image: 2018-10-02 10_31_48-editor de directivas de grupo local] https://user-images.githubusercontent.com/39503933/46351754-7e9fd780-c62e-11e8-9b42-f754754f807c.png
— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/EFTEC/Cyberarms/issues/2#issuecomment-426274914, or mute the thread https://github.com/notifications/unsubscribe-auth/AE6axh86T7QXhJPyVroQ1X8khINf_pIMks5ug2sJgaJpZM4Ws_un .
You have to ensure you are using NLA for authentication, and close the UDP port for Remote Desktop. As UDP can be tampered by spoofing, IDDS does not rely on UDP.
I'm using Windows 10 Pro 1803 and with the TLS/SSL agent enabled to detect failed remote desktop attempts it isn't picking them up. Could you offer any advice?