Technical Tip: Limitations of UTM inspection for d...

FortiGate

FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.

Article Id 241312

Description

This article explains the limitations of UTM inspection for data exchanged inside an encrypted RDP session.

Scope

FortiGate.

Solution

MS-RDP protocol uses a proprietary form of encryption and therefore the UTM inspection of the data exchanged inside an encrypted RDP connection is not supported by FortiGate.

Example:
Clipboard file sharing over RDP.

In such cases, a FortiClient agent installed on the end user machines can prevent the nodes from storing/sharing any suspicious data into the Local and Remote networks. For more information, refer to the product datasheet

Related document:

https://www.fortinet.com/content/dam/fortinet/assets/data-sheets/forticlient.pdf

Alternatively, file sharing can be blocked over RDP using Group Policy Objects(GPO).

929

Contributors

Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Technical Tip: Limitations of UTM inspection for data exchanged inside an encrypted RDP session

You are leaving our website