The easiest way to enable remote desktop access on Windows is by running SystemPropertiesRemote.exe.
There are alternatives using the command prompt that edit registry settings and network firewall in the links below, but they are all more cumbersome.
Links mostly via enable remote desktop on windows – Google Search
- [WayBack] Turn on Remote Desktop in Windows 7, 8, 10, or Vista
- [WayBack] Enable Remote desktop via the registry – Mark Empson’s Global notepad
- [WayBack] Enable Remote Desktop remotely by using remote registry –
- [WayBack] How to Turn on Remote Desktop Using Regedit: 10 Steps
- [WayBack] Methods to Enable and Disable Remote Desktop Locally By default on a Windows Server Remote Management (WinRM) is enabled, but Remote Desktop (RDP) is Disabled. Here’s how to Enable RDP locally.
- [WayBack] windows – Enable remote desktop on a machine remotely – Server Fault
- [WayBack] Enable Remote Desktop in Windows Firewall from command line – Super User
- [WayBack] Enable Remote Desktop Connection through Windows Firewall Remotely – John Howard – Senior Program Manager in the Hyper-V team at Microsoft
- [WayBack] Script Remotely Enable RDP
I need to check out:
- which of the above are really old
- how to find out if WinRM is enabled
- see if this can be done over WinRM
- see if this can be done with PSShell
- see if PowerShell is a good successor to the now deprecated netsh
- you want to enable the remote desktop group in a language and windows version neutral way, not just port 3389
Some registry entries:
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "RemoteDesktop-UserMode-In-TCP"="v2.28|Action=Allow|Active=TRUE|Dir=In|Protocol=6|LPort=3389|App=%SystemRoot%\\system32\\svchost.exe|Svc=termservice|Name=@FirewallAPI.dll,-28775|Desc=@FirewallAPI.dll,-28756|EmbedCtxt=@FirewallAPI.dll,-28752|" "RemoteDesktop-UserMode-In-UDP"="v2.28|Action=Allow|Active=TRUE|Dir=In|Protocol=17|LPort=3389|App=%SystemRoot%\\system32\\svchost.exe|Svc=termservice|Name=@FirewallAPI.dll,-28776|Desc=@FirewallAPI.dll,-28777|EmbedCtxt=@FirewallAPI.dll,-28752|" "RemoteDesktop-Shadow-In-TCP"="v2.28|Action=Allow|Active=TRUE|Dir=In|Protocol=6|App=%SystemRoot%\\system32\\RdpSa.exe|Name=@FirewallAPI.dll,-28778|Desc=@FirewallAPI.dll,-28779|EmbedCtxt=@FirewallAPI.dll,-28752|Edge=TRUE|Defer=App|" "RemoteAssistance-In-TCP-EdgeScope"="v2.28|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=%SystemRoot%\\system32\\msra.exe|Name=@FirewallAPI.dll,-33003|Desc=@FirewallAPI.dll,-33006|EmbedCtxt=@FirewallAPI.dll,-33002|Edge=TRUE|Defer=App|" "RemoteAssistance-Out-TCP"="v2.28|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Public|App=%SystemRoot%\\system32\\msra.exe|Name=@FirewallAPI.dll,-33007|Desc=@FirewallAPI.dll,-33010|EmbedCtxt=@FirewallAPI.dll,-33002|" "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope"="v2.28|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|LPort=3540|App=%systemroot%\\system32\\svchost.exe|Svc=pnrpsvc|Name=@FirewallAPI.dll,-33039|Desc=@FirewallAPI.dll,-33040|EmbedCtxt=@FirewallAPI.dll,-33002|Edge=TRUE|Defer=App|" "RemoteAssistance-PnrpSvc-UDP-OUT"="v2.28|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Public|App=%systemroot%\\system32\\svchost.exe|Svc=pnrpsvc|Name=@FirewallAPI.dll,-33037|Desc=@FirewallAPI.dll,-33038|EmbedCtxt=@FirewallAPI.dll,-33002|"
–jeroen
