CCE-37708-5Platform: cpe:/o:microsoft:windows_server_2012::r2 | Date: (C)2015-10-08 (M)2023-07-04 |
Restrict Remote Desktop Services users to a single Remote Desktop Services session
This policy setting allows you to restrict users to a single remote Remote Desktop Services session.
If you enable this policy setting, users who log on remotely using Remote Desktop Services will be restricted to a single session (either active or disconnected) on that server. If the user leaves the session in a disconnected state, the user automatically reconnects to that session at next logon.
If you disable this policy setting, users are allowed to make unlimited simultaneous remote connections using Remote Desktop Services.
If you do not configure this policy setting, the 'Restrict each user to one session' setting in the Remote Desktop Session Host Configuration tool will determine if users are restricted to a single Remote Desktop Services session.
Parameter:
[enable/disable]
Technical Mechanism:
(1) GPO: Computer ConfigurationAdministrative TemplatesWindows ComponentsRemote Desktop ServicesRemote Desktop Session HostConnections!Restrict Remote Desktop Services users to a single Remote Desktop Services session
(2) REG: HKEY_LOCAL_MACHINESOFTWAREPoliciesMicrosoftWindows NTTerminal Services!fSingleSessionPerUser
CCSS Severity: | CCSS Metrics: |
CCSS Score : 6.5 | Attack Vector: NETWORK |
Exploit Score: 2.8 | Attack Complexity: LOW |
Impact Score: 3.6 | Privileges Required: LOW |
Severity: MEDIUM | User Interaction: NONE |
Vector: AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H | Scope: UNCHANGED |
| Confidentiality: NONE |
| Integrity: NONE |
| Availability: HIGH |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:28173 |