Hello,
We ran a vulnerability scan on one of our server recently from a third party. It showed up few vulnerabilities, I am able to fix most of them but I got stopped at vulnerability -- Windows Remote Desktop Protocol Weak Encryption Method Allowed
Ours is Windows server 2012 R2, I have found fixes for Windows Server 2008 but not for Server 2012 R2.
Solution Provided by our vendor is : RDP needs to be configured to use strong encryption methods or use SSL as the privacy and integrity provider. To configure RDP encryption methods 'Terminal Services Configuration' snap-in can be launched in mmc.exe. In 'Terminal Services Configuration' properties dialog box General tab for the Encryption Level 'High' should be selected.
Anybody has any idea how to fix this in Windows Server 2012 R2.
Mallikarjuna YH, Windows / Exchange