asheroto/EnableRDP.ps1

## README.md

      
    Raw
  

              README.md
            
          
    Enable RDP on a computer with PowerShell

The script performs the following:


Enables RDP access
Enables UDP support (as well as TCP)
Enables user authentication
Configures Windows Firewall

Notes:


Script must run on the computer you want to access
You can connect to a computer using Enter-PSSession
Script must run as Administrator
Firewall rules allow any profile
Port 3389 (default RDP port) is used


## EnableRDP.ps1
# Warning
Clear-Host
Write-Output "Run this script on the computer you want to access via RDP"
Write-Output ""

# Ask
Write-Output "Remote address can be an IP address or network with CIDR"
Write-Output "Example: 192.168.0.5 or 192.168.0.0/24"
Write-Output ""
$RemoteAddress = Read-Host "Remote Address"
Write-Output ""

# Registry
Set-ItemProperty -Path "HKLM:\System\CurrentControlSet\Control\Terminal Server"-Name "fDenyTSConnections" -Value 0
Set-ItemProperty -Path "HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\Client" -Name "fClientDisableUDP" -Value 0
Set-ItemProperty -Path "HKLM:\System\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp" -Name "UserAuthentication" -Value 1

# Firewall
New-NetFirewallRule -DisplayName "RDP (TCP)" -Direction Inbound -Action Allow -Protocol TCP -LocalPort 3389 -RemoteAddress $RemoteAddress -Profile Any -Enabled True | Out-Null
New-NetFirewallRule -DisplayName "RDP (UDP)" -Direction Inbound -Action Allow -Protocol UDP -LocalPort 3389 -RemoteAddress $RemoteAddress -Profile Any -Enabled True | Out-Null

# Result
Write-Output "Done! Now restart the computer"
Write-Output ""
	# Warning
	Clear-Host
	Write-Output "Run this script on the computer you want to access via RDP"
	Write-Output ""

	# Ask
	Write-Output "Remote address can be an IP address or network with CIDR"
	Write-Output "Example: 192.168.0.5 or 192.168.0.0/24"
	Write-Output ""
	$RemoteAddress = Read-Host "Remote Address"
	Write-Output ""

	# Registry
	Set-ItemProperty -Path "HKLM:\System\CurrentControlSet\Control\Terminal Server"-Name "fDenyTSConnections" -Value 0
	Set-ItemProperty -Path "HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\Client" -Name "fClientDisableUDP" -Value 0
	Set-ItemProperty -Path "HKLM:\System\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp" -Name "UserAuthentication" -Value 1

	# Firewall
	New-NetFirewallRule -DisplayName "RDP (TCP)" -Direction Inbound -Action Allow -Protocol TCP -LocalPort 3389 -RemoteAddress $RemoteAddress -Profile Any -Enabled True \| Out-Null
	New-NetFirewallRule -DisplayName "RDP (UDP)" -Direction Inbound -Action Allow -Protocol UDP -LocalPort 3389 -RemoteAddress $RemoteAddress -Profile Any -Enabled True \| Out-Null

	# Result
	Write-Output "Done! Now restart the computer"
	Write-Output ""