I'm looking at setting up Windows remote desktop on a W10 Pro machine.
I'd like to increase the security on the connection and wonder if any of the following are possible:
-
A password, different from the username used to login when physically using the machine. This way it could use a random generated string which I could input once from the dial out computer.
-
2 factor authentication.
-
Limit all incoming connections to machines on the same LAN only.
There will be 3 computers that will connect to the host, mostly Macs.
Is any/all of these possible and are there some other things I should be looking at?
Best Answer
The article Securing Remote Desktop (RDP) for System Administrators lists these tips:
For your question about two-factor authentication, I don't believe this exists on Windows 10 Pro, only on Windows Server.
The article The 5 Best Alternatives To Google Authenticator lists six products which have a free plan (but also paid ones) : Google Authenticator, Authy, Duo, HDE OTP, Authenticator Plus, Sound Login Authenticator. I have never used such products, so do not know how useful these are for you.