Skip to content

Commit

Permalink
docs: mention LSA protection
Browse files Browse the repository at this point in the history 
The Teleport package that is installed for RDP access as local
Windows users is not signed by Microsoft and therefore will not
load on systems with LSA protection enabled.

Updates gravitational/teleport.e#5615
  • Loading branch information
@zmb3
zmb3 authored and github-actions committed Dec 9, 2024
1 parent af06f54 commit 8a6a3d3
Showing 1 changed file with 4 additions and 0 deletions.
4 changes: 4 additions & 0 deletions docs/pages/enroll-resources/desktop-access/getting-started.mdx
View file
Original file line number Diff line number Diff line change
Expand Up @@ -62,6 +62,10 @@ interactively and select the Teleport certificate that you exported when prompte
- Disables Network Level Authentication (NLA) for remote desktop services.
- Enables RemoteFX compression, if using Teleport version 15 or newer.

Note: in order for the Windows Local Security Authority (LSA) to load the Teleport DLL,
[LSA protection](https://learn.microsoft.com/en-us/windows-server/security/credentials-protection-and-management/configuring-additional-lsa-protection)
must be disabled.

{/*lint ignore ordered-list-marker-value*/}
5. Restart the computer.

Expand Down

0 comments on commit 8a6a3d3

Please sign in to comment.