Simplify the management of your windows network.

MetaLAN

  • Up and running in 5 minutes
  • Agent less - No need to install anything on the endpoints
  • Free download - No registration required
Learn More...

How to Enable Remote Desktop and Allow Access through the Windows Firewall with Advanced Security on Windows 8 and Server 2012 using Group Policy

Prerequisites

You will require the Group Policy Management Tools on Windows 7, Windows 8, Windows Server 2008, Windows or Server 2012. These are part of the Remote Server Administration Tools (RSAT) availabale form the Microsoft web site.

Target Platforms

Windows 8, Server 2012

For Windows Vista, Widows 7 and Server 2008 please see “How to Enable Remote Desktop and Allow Access through the Windows Firewall with Advanced Security using Group Policy”

Instructions

To enable Remote Desktop and Allow Access through the Windows Firewall with Advanced Security on Windows 8 and Server 2012 using Group Policy please follow these instuctions.

Turning on Remote Desktop using Group Policy

    1. Edit an existing Group Policy object or create a new one using the Group Policy Management Tool.
    2. Expand the Computer Configuration/Policies/Software Settings/Administrative Templates/Windows Components/Remote Desktop Services/Remote Desktop Session Host/Connections node and open the Allow users to connect using Remote Desktop Services setting.Group Policy Management Editor
    3. Check the Enabled radio button. Click the OK button to exit and save the new setting.Allow users to connect using Remote Desktop Services
    4. Make sure the Group Policy Object is applied to the relevant computers using the Group Policy Management Tool.

Allowing Remote Desktop Access through Windows Firewall with Advanced Security using Group Policy on Windows 8

    1. Edit an existing Group Policy object or create a new one using the Group Policy Management Tool.
    2. Expand the Computer Configuration/Policies/Windows Settings/Security Settings/Windows Firewall with Advanced Security/Windows Firewall with Advanced Security/Inbound Rules node.Group Policy Management Editor
    3. Check the Custom radio button and click the Next button.New Inbound Rule Wizard
    4. Check the This program path: radio button and enter %SystemRoot%\system32\svchost.exe into the field then click the Next button.New Inbound Rule Wizard
    5. If you recieve a warning click Yes.Windows Firewall with Advanced Security
    6. Select TCP from the Protocol Type: drop down list. Select Specific Ports from the Local Port: drop down list. Enter 3389 in to the Local port: field. Select All Ports from the Remote port: drop down list. Click the Next button.New Inbound Rule Wizard
    7. You may choose to restrict what IP addresses ICMP is allowed to and from or check the Any IP address radio buttons to allow all then click Next.New Inbound Rule Wizard
    8. Check the Allow the Connection radio botton and click Next.New Inbound Rule Wizard
    9. Choose what profiles the rule will apply to. Check the Domain profile checkbox as a minimum and click Next.New Inbound Rule Wizard
    10. Add a meaninful name for the rule in the Name: field. Add a description if desired and click Finish to exit and save the new rule.New Inbound Rule Wizard
    11. Make sure the Group Policy Object is applied to the relevant computers using the Group Policy Management Tool.