RDP to a Remote Windows System
Use BeyondTrust to start a Remote Desktop Protocol (RDP) session with a remote Windows system. Because remote desktop protocol sessions are converted to BeyondTrust sessions, users can share or transfer sessions, and sessions can be automatically audited and recorded as your administrator has defined for your site.
To use Local RDP through BeyondTrust, you must be on the same network segment as the target system and must have the user account permission Allowed Jump Methods: Local RDP.
To use Remote RDP through BeyondTrust, you must have access to a Jumpoint and must have the user account permissions Allowed Jump Methods: Remote RDP.
To start an RDP session, open the Remote Desktop Protocol dialog from:
- The Support menu of the representative console
- The RDP To button at the top of the representative console
From the Jumpoint dropdown, select the network that hosts the computer you wish to access. If you generally access the same Jumpoint, check Remember as my preferred choice. Enter the Hostname / IP of the system you wish to access.
By default, the RDP server listens on port 3389, which is therefore the default port BeyondTrust attempts. If the remote RDP server is configured to use a different port, add it after the hostname or IP address in the form of <hostname>:<port> or <ipaddress>:<port> (e.g., 10.10.24.127:40000).
Provide the Username to sign in as, along with the Domain.
Choose the Display Size in which to view the remote system. This can be the same size as your primary monitor, the size of all of your monitors combined, or one of several standard sizes.
Select the Quality at which to view the remote screen. This cannot be changed during the RDP session. Select the color optimization mode to view the remote screen. If you are going to be primarily sharing video, select Video Optimized; otherwise select between Black and White (uses less bandwidth), Few Colors, More Colors, or Full Color (uses more bandwidth).
To start a console session rather than a new session, check the Console Session box.
If the server's certificate cannot be verified, you receive a certificate warning. Checking Ignore Untrusted Certificate allows you to connect to the remote system without seeing this message.
Move Jump Items from one Jump Group to another using the Jump Group dropdown. The ability to move Jump Items to or from different Jump Groups depends upon your account permissions.
Further organize Jump Items by entering the name of a new or existing Tag. Even though the selected Jump Items are grouped together under the tag, they are still listed under the Jump Group in which each is pinned. To move a Jump Item back into its top-level Jump Group, leave this field blank.
Select the Public Portal through which this Jump Item should connect. If a session policy is assigned to this public portal, that policy may affect the permissions allowed in sessions started through this Jump Item. The ability to set the public portal depends on your account permissions.
Jump Items include a Comments field for a name or description, which makes sorting, searching, and identifying Jump Items faster and easier.
To set when users are allowed to access this Jump Item, choose a Jump Policy. These policies are configured by your administrator in the /login interface.
To import an RDP file, click the Import button. This pre-populates some of the fields required for the remote desktop protocol connection.
To begin the remote desktop (RDP) session, click Jump.
You are prompted to enter the password for the username you specified earlier.
Your remote desktop protocol (RDP) session now begins. Begin screen sharing to view the remote desktop. You can send the Ctrl-Alt-Del command, capture a screenshot of the remote desktop, and share clipboard contents. You also can share or transfer the RDP session with other logged-in BeyondTrust users, following the normal rules of your user account settings.
Jump Items can be set to allow multiple users to simultaneously access the same Jump Item. If set to Start New Session, then a new independent session starts for each user who Jumps to a specific RDP Jump Item. The RDP configuration on the endpoint controls any further behavior regarding simultaneous RDP connections. For more information on simultaneous Jumps, please see Jump Item Settings.