Forum Discussion
Enable RDP to take remote of Intune managed devices, Firewall blocking the connection
Deleted
I would suggest the following:
- Check the Firewall Rules in Intune. Particularly if you have any Security / Defender Baseline policies set. There is a setting called Policy rules from group policy not merged which I set to 'Not Configured' for the Private Firewall Profile
- Use the Scripts policy tool (or just do it manually) in Intune to deploy the following settings (PowerShell)
Set-NetFirewallRule -DisplayName "Remote Desktop - User Mode (TCP-In)" -Profile "Private"
Enable-NetFirewallRule -DisplayName "Remote Desktop - User Mode (TCP-In)"
- Check your network adaptor is using the Private Network Profile Type. (Settings > Network & Internet - Properties)
- Within Intune, create a Configuration Profile and enable the following settings:
- Allow users to connect remotely by using Remote Desktop Services
- Require user authentication for remote connections by using Network Level Authentication
In the Windows 11 settings (System > Remote Desktop) it will show RDC as being OFF, but within The RDC options found in Control Panel, it will be turned on. Who knows what's going on here?
I believe that setting the Policy rules from group policy not merged to 'Not Configured' does open some doors in terms of security but I've had no luck using Intune FW rules.
I'd be interested if anyone has been able to do this recently with all the security baselines enabled.
- DeletedJun 30, 2023
Hey guys, we fixed our issue with the create of a new group to apply for a new Defender firewall policy accepted this : "The firewall allows RDP connection only with the private network or with the same domain via NTLMv2 authentication."
So need to turn on 2 profile through firewall as private network and domain accepting the outbound connection through NTLMv2 or your own config.