Disable Microsoft RD Connection Broker

Discussion in 'Parallels Remote Application Server' started by hokeyplayer, Sep 12, 2022.

  1. hokeyplayer

    hokeyplayer Bit poster

    Messages:
    8
    I was reading through the v19 Admin guide and came across the option below,

    upload_2022-9-12_10-36-50.png

    Would it be beneficial to disable the RD Connection Broker for performance reasons? If RAS is doing the brokering, why would one need the Microsoft RD Connection Broker enabled?
     
    SamS22 likes this.
  2. SamS22

    SamS22 Member

    Messages:
    34
    will disabling the Microsoft RD connection broker stop direct RDP sessions into the server?
     
  3. GeorgS11

    GeorgS11 Bit poster

    Messages:
    1
    No, I've tried that. But interesting question, how to disable direct RDP login on to RDSH if 2FA is enabled locally. Is there a possibility to block that for MS RDP Client?
     
  4. ChristianH32

    ChristianH32 Member

    Messages:
    24
    Hi,
    not sure what you mean with "2fa is enabled locally".
    if you enable MFA in Parallels, i think, it does not have any affect to MSTSC.
    We secured the RDSH server with local Firewall:
    Allow Access only from Administrative Workstation and Gateway (TCP/UDP 3389)
    Configured Ras Client to use Gateway SSL Mode.
    (a little bit more complex because we enalbed also ipsec in backend, and allow unsecured connections only to Gateway (SSL).

    This means all connections are connected through Gateway, but we can secure RDS Port.

    br
    Chris
     

Share This Page