TSplus Add-ons: RDS-Knight

When it comes to exposing Remote Desktop Protocol to direct connections, you need a solid secure server to protect your systems against remote attackers. Due to the innovative techniques available for modern cyber-criminals and a use-after-free vulnerability in the Microsoft solution, hackers from all across the globe can easily access login credentials anywhere at all, carry out ransomware attacks and run arbitrary code on the targeted systems. Meanwhile, our team of qualified experts has worked hard to secure your remote desktop access. Born from the clear understanding of the problem, RDS-Knight offers advanced functionality and makes the use of remote access in your daily routine as safe as possible. Now, with RDS-Knight you can easily manage the entire fleet of workstations even if you are a thousand miles away.

Remember, HACKERS AND MALICIOUS BOTS NEVER SLEEP. With RDS-Knight, you can hook into your workstation anytime, anywhere without the fear of external attacks. Add this outstanding tool to your arsenal, and use remote access to its full potential.

Features and benefits

The 360 Degree Approach to Security

RDS-Knight provides five major protections:

  • Prevent foreign attackers to open a session.
  • Prohibit users to connect at night.
  • Avoid brute-force attacks.
  • Provide highly secured user’s environment.
  • Restrict access per device.

It just works out of the box, and displays the most useful data extracted from your server.

Geo-Restriction for RDP

Your users are located in USA, UK and Canada offices. Why anyone should be able to open a session from China, India, Iran, or Germany?

In a snap with RDS-Knight, you protect your RDS servers from any attackers trying to open a session from foreign countries. This is extremely simple and so powerful. Just do it!

This feature is included in RDS-Knight Security Essentials.

Protect your Servers At Night

Of course, your users should be free to connect and to work when they are at their desks. However, why would they be allowed to open a session at midnight?

With RDS-Knight, you can specify the working time of the day when each of your user or group are allowed to open sessions. It will be so easy and amazingly nice to enhance your security policies.

This feature is included in RDS-Knight Security Essentials.

Block Brute-force Attacks

If your Windows server is publicly available on Internet, then there is a 100% probability that hackers, network scanners and brute force robots are trying to guess your Administrator login and password – as we speak. Using current logins and password dictionaries, they will automatically try to login to your server hundreds to thousands times every minute. Not only this is bad for your server’s security, but it can also consume a lot of its resources (CPU and bandwidth)!

Stop the constant attacks right now with RDS-Knight brute-force attacks defender. It will instantly protect your server by monitoring Windows failed login attempts and automatically blacklist the offending IP addresses after several failures. Moreover, you can of course configure it to match your needs.

This feature is included in RDS-Knight Security Essentials.

One Click to Set User Rights Policies

Windows is providing many powerful GPOs but it will cost you several days to enforce the expected security rules. Most of us are not comfortable enough with such kind of system restriction policies; as a result we give up on it or we select only few of them.

In one click, RDS-Knight will enforce for you the best security practice. In few minutes, you will get the best level of security that you expect to achieve for your Remote Desktop user’s environment. It is as easy to do it “user per user”, or to set it up “per group”. More than a time-saver to protect your server, RDS-Knight is providing you more security without complexity.

Device Protection

Why should a hacker be able to use a stolen Windows credential to open a session from any device? This should be prevented. The EndPoint Protection is the right answer. It will bind the user’s credential to the user’s own device.

How does that work? RDS-Knight will record the user’s device name at his first connection. The administrator can decide to restrict access for this logon to that recorded device’s name. Doing so, any attempt to connect from another device will be automatically detected and rejected.

RDS-Knight web interface is fully compatible with tablets (iPad, Android, Surface...) and mobile phones (iPhone, Android, Windows...)