From 4913a3e7034176890195fd9287808693af51d3dc Mon Sep 17 00:00:00 2001 From: Pierre Audonnet Date: Fri, 5 Feb 2021 10:25:56 -0500 Subject: [PATCH] Update remote-credential-guard.md /remtoteGuard does not require to be a member of the local admintrators group of the source computer nor the target computer. There used to be a bug which was corrected (discussed with Andrew Wiley from Enterprise & Security SWE R&D) However, it does require the user to have some RDP permissions at the remote computer level. So I updated the note to reflect the real requirements. --- windows/security/identity-protection/remote-credential-guard.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/identity-protection/remote-credential-guard.md b/windows/security/identity-protection/remote-credential-guard.md index 0637c997cc..aadf69b704 100644 --- a/windows/security/identity-protection/remote-credential-guard.md +++ b/windows/security/identity-protection/remote-credential-guard.md @@ -181,7 +181,7 @@ mstsc.exe /remoteGuard ``` > [!NOTE] -> The user must be part of administrators group. +> The user must be authorized to connect to the remote server using Remote Desktop Protocol. For example, by being a member of the Remote Desktop Users local group on the remote computer. ## Considerations when using Windows Defender Remote Credential Guard