How to Give RDP Access to a User in Windows Server 2019

How to Give RDP Access to a User in Windows Server 2019?

/ Knowledgebase, Remote Desktop Protocol (RDP)

To give RDP access to a user in Windows Server 2019, you need to add the user account to the Remote Desktop Users group and make sure Remote Desktop is enabled on the server. This can be done by opening Server Manager, navigating to Local Server → Remote Desktop, enabling remote connections, and then going to Computer Management → Local Users and Groups → Groups. From there, double-click Remote Desktop Users, add the user, and apply the changes. Once completed, the user will be able to log in via Remote Desktop using their credentials.

Understanding RDP Access

Before diving into the steps, it’s essential to understand what RDP access entails. RDP access allows a user to log in to a Windows Server from a remote location, utilizing the server’s resources as if they were physically present. This is particularly useful for system administrators, developers, and other IT professionals who need to manage servers without being on-site.

Prerequisites

To give RDP access to a user, ensure you have the following:

  • Windows Server 2019: Properly installed and configured.
  • Administrative Privileges: You need administrator rights to change RDP settings.
  • User Account: The user must have a local account on the Windows Server or be part of the domain.

Step-by-Step Guide How to Give RDP Access to a User in Windows Server 2019

1. Verify RDP is Enabled

First, ensure that Remote Desktop is enabled on the Windows Server 2019.

a. Open Server Manager

  • Click on the Start menu and select Server Manager.

b. Access System Properties

  • In Server Manager, go to Local Server.
  • Find the Remote Desktop section and click on Disabled (if it is disabled).

c. Enable Remote Desktop

  • In the System Properties window, select the Remote tab.
  • Under the Remote Desktop section, select Allow remote connections to this pc.
  • Uncheck the box Allow connections only from computers running Remote Desktop with Network Level Authentication (recommended) if compatibility with older versions of Windows is needed.
  • Click Apply and then OK.

2. Add User to Remote Desktop Users Group

Users need to be added to the Remote Desktop Users group to access the server via RDP.

a. Open Computer Management

  • Right-click on the Start menu and select Computer Management.

b. Navigate to Users and Groups

  • In the Computer Management window, expand Local Users & Groups.
  • Click on Groups.

c. Add User to Remote Desktop Users Group

  • Double-click on Remote Desktop Users group.
  • Click on Add to open the Select Users window.
  • Type the name of the user or click Advanced and then Find Now to search for the user.
  • Select the user and click OK.
  • Click Apply and then OK.

3. Configure Firewall Settings

Ensure that the firewall is configured to allow RDP connections.

a. Open Windows Defender Firewall

  • Open the Control Panel and select System and Security.
  • Click on Windows Defender Firewall.

b. Allow RDP Through Firewall

  • Press on Allow an app or feature through Windows Defender Firewall.
  • Scroll down and ensure that Remote Desktop is checked for both Private and Public networks.
  • Click OK to save the changes.

4. Verify Network Level Authentication (Optional)

For enhanced security, Network Level Authentication (NLA) is recommended.

a. Open System Properties

  • Right-click on This PC on the desktop or in File Explorer & select Properties.
  • Click on Remote settings.

b. Enable NLA

  • In the Remote tab, ensure the box Allow connections only from computers running Remote Desktop with Network Level Authentication (recommended) is checked.
  • Click Apply and then OK.

5. Test RDP Access

Finally, test the configuration to ensure the user can access the server via RDP.

a. Use Remote Desktop Connection

  • On a client computer, open Remote Desktop Connection from the Start menu or by typing mstsc in the Run dialog (Win + R).
  • Enter the IP address or hostname of the Windows Server 2019 and click Connect.

b. Log In with User Credentials

  • Enter the credentials for the user who granted RDP access.
  • Verify that the user can successfully connect to the server.

Troubleshooting Tips

If the user encounters issues connecting via RDP, consider these troubleshooting steps:

a. Check User Permissions

  • Ensure the user correctly added to the Remote Desktop Users group.

b. Verify Firewall Settings

  • Confirm that the firewall rules allow RDP traffic.

c. Review Network Settings

  • Ensure the server is reachable from the client machine and there are no network issues.

d. Examine Group Policies

  • Check Group Policy settings that might restrict RDP access.

Conclusion

Granting RDP access to a user in Windows Server 2019 involves enabling Remote Desktop, adding the user to the Remote Desktop Users group, configuring firewall settings, and verifying security settings like NLA. By following the steps outlined in this guide, you can ensure that authorized users have the necessary access to manage and utilize the server remotely. Proper configuration and testing are crucial to providing a seamless and secure remote access experience.

Related Posts

Scroll to Top