Skip to content

Commit

Permalink
docs: mention LSA protection (#49729)
Browse files Browse the repository at this point in the history
The Teleport package that is installed for RDP access as local
Windows users is not signed by Microsoft and therefore will not
load on systems with LSA protection enabled.

Updates gravitational/teleport.e#5615
  • Loading branch information
zmb3 authored Dec 9, 2024
1 parent 02141ca commit 373d34b
Showing 1 changed file with 4 additions and 0 deletions.
Original file line number Diff line number Diff line change
Expand Up @@ -62,6 +62,10 @@ interactively and select the Teleport certificate that you exported when prompte
- Disables Network Level Authentication (NLA) for remote desktop services.
- Enables RemoteFX compression, if using Teleport version 15 or newer.

Note: in order for the Windows Local Security Authority (LSA) to load the Teleport DLL,
[LSA protection](https://learn.microsoft.com/en-us/windows-server/security/credentials-protection-and-management/configuring-additional-lsa-protection)
must be disabled.

{/*lint ignore ordered-list-marker-value*/}
5. Restart the computer.

Expand Down

0 comments on commit 373d34b

Please sign in to comment.