How to secure Remote Desktop Connections in Windows 2012r2 via Registry
Launch regedit.exe and navigate to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp
Set Minimum Encryption Level to "High" instead of "Client Compatible":
HKLM\System\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp\MinEncryptionLevel REG_DWORD Value: 3
Set Security Layer to "SSL (TLS 1.0)" instead of "Negotiate":
HKLM\System\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp\SecurityLayer REG_DWORD Value: 2















