Connecting to a remote desktop

Expand all | Collapse all

Kaspersky Thin Client lets you choose to either directly connect to a remote desktop via RDP or connect to remote desktops managed by Basis.WorkPlace. Depending on the infrastructure in your enterprise, you can select one of the following options:

• Connecting to a remote desktop via RDP

  The following specifics must be taken into consideration when connecting to a remote desktop via RDP:

  • When connecting to a remote desktop running an Astra Linux operating system (CE or SE) using the xRDP protocol, an expired user password is accepted, but the connection fails. The same applies to using an incorrect user name. Also, there is no way to change the password given such a connection.
  • You cannot connect to a remote desktop running a Microsoft Windows operating system with Network Layer Authentication (NLA) enabled if the password has expired. Also, you cannot change the password by yourself given such a connection.

    To solve these issues, we recommend contacting your enterprise administrator.

  To connect to a remote desktop via RDP:

  1. Turn on Kaspersky Thin Client.
  2. In the main window of Kaspersky Thin Client, click the RDP button.
  3. In the connection window that opens, specify the settings for connecting to the remote desktop:
     1. In the Server field, specify the IP address or name of the RDP server to which you want to connect.

        If a Wallix Bastion privileged user access control system is deployed in your enterprise infrastructure, you can connect to remote desktops through this system by indicating its IP address or server name in the Server field.

        Kaspersky Thin Client saves the address of the last RDP server with which a connection was successfully established, so you do not need to enter it again when reconnecting.

     2. In the User name field, enter the local or domain user name. If you indicate a domain user name, you are not required to indicate the name of the domain. However, you can do so in Domain\User name format.

        Kaspersky Thin Client saves the user name that last successfully connected to the RDP server, so you do not need to enter it again when reconnecting.

     3. In the Password field, enter the user password.

        The user password is cleared each time you exit the remote desktop connection window.

  4. Click the Connect button.

     If you are connecting to a remote desktop via RDP for the first time and Kaspersky Thin Client is not included in an administration group, check the settings of the added certificate in the opened Adding certificate window and click the Add certificate button.

     If Kaspersky Thin Client was previously added to an administration group that is managed through the Kaspersky Security Center Web Console and the Kaspersky Security Center administrator added an RDP server authentication certificate for this administration group, the connection is established automatically.

     The certificate for authenticating the RDP server will be added to the system certificate store of Kaspersky Thin Client and will be used for subsequent connections.

  After a few seconds, the monitor will show the remote desktop of the computer that you are connected to via RDP.

  You can also configure RDP connection settings by clicking Settings.

• Connecting to a remote desktop managed by Basis.WorkPlace

  When working with Kaspersky Thin Client via Basis.WorkPlace, the following limitations apply:

  • Users cannot be authorized with smart cards in the Basis.WorkPlace connection manager.
  • Users cannot initiate a password change in Kaspersky Thin Client.
  • Simultaneous connection to multiple remote desktops managed by Basis.WorkPlace is not supported.

  The Basis.WorkPlace administrator can restrict access to desktops managed by Basis.WorkPlace. For example, the administrator can lock your user account or block access to remote desktops managed by Basis.WorkPlace that were previously available to your user account. If you encounter any problems connecting to a remote desktop, we recommend contacting your Basis.WorkPlace administrator.

  To connect to a remote desktop managed by Basis.WorkPlace:

  1. Turn on Kaspersky Thin Client.
  2. In the main window of Kaspersky Thin Client, click the Basis.WorkPlace button.
  3. In the connection window that opens, specify the Basis.WorkPlace connection settings:
     1. In the Server field, specify the IP address or name of the Basis.WorkPlace connection manager server.

        Kaspersky Thin Client saves the address of the Basis.WorkPlace connection manager with which a connection was successfully established, so you do not need to enter it again when reconnecting.

     2. In the Domain field, enter the domain name.
     3. In the User name field, enter the user name.

        Kaspersky Thin Client saves the user name that last successfully connected to Basis.WorkPlace, so you do not need to enter it again when reconnecting.

     4. In the Password field, enter the user password.

        The password is cleared each time you exit the window for connecting to desktops managed by Basis.WorkPlace.

        If the number of allowed incorrect password entry attempts is exceeded, the user account will be blocked. The corresponding message will be displayed in the remote desktop connection window. The number of allowed password entry attempts is defined by the active security policy set by the Basis.WorkPlace administrator.

  4. Click the Connect button.

     If you are connecting to a remote desktop managed by Basis.WorkPlace for the first time and Kaspersky Thin Client is not included in an

     administration group

     

     A set of devices combined according to the performed functions. Devices are grouped for easy management as a whole. A group may include other groups. Group policies can be created for each thin client added to a group.

     , check the settings of the added certificate in the opened Adding certificate window and click the Add certificate button.

     If Kaspersky Thin Client was previously added to an administration group that is managed through the Kaspersky Security Center Web Console and the Kaspersky Security Center administrator added a certificate for authenticating the Basis.WorkPlace connection broker for this administration group, the connection to a remote desktop managed by Basis.WorkPlace is established automatically.

     The certificate for authenticating the Basis.WorkPlace connection broker will be added to the system certificate store of Kaspersky Thin Client and will be used for subsequent connections.

     A window for selecting a remote desktop opens showing all desktops that are available for connection.

  5. If you need to refresh the list of desktops, click the Reload button.
  6. Click the button with the name of the desktop to which you want to connect.

  After a few seconds, the monitor will show the remote desktop to which you are connected.

  In the window for connecting to desktops managed by Basis.WorkPlace, you can also configure the connection settings by clicking Settings.

When connecting to a remote desktop, Kaspersky Thin Client uses TLS encryption to protect the connection session and protect data from interception or falsification.