There are several settings that must be configured to enable Remote Desktop connections during an unattended installation. First, you must enable Remote Desktop connections, and then you must enable the Remote Desktop group in Windows® Firewall.

  1. Create a new answer file or update your existing answer file.

    For more information about creating or updating an answer file, see Work with Answer Files in Windows SIM.

  2. Add the following settings to your answer file in the listed configuration pass:

    Component Configuration Pass

    Microsoft-Windows-TerminalServices-LocalSessionManager

    4 specialize

    Networking-MPSSVC-Svc\FirewallGroup

    4 specialize

  3. In the Answer File pane, right-click FirewallGroups and select Insert new Firewall Group.

  4. Configure the following settings in the Answer File pane.

    Component Value

    Microsoft-Windows-TerminalServices-LocalSessionManager

    fDenyTSConnections=false

    Networking-MPSSVC-Svc\FirewallGroups\FirewallGroup

    Active=true

    Group=Remote Desktop

    Profile=all

  5. (Optional) Specify how users are authenticated.

    If you do not specify the following setting, users will not be able to connect remotely from computers that do not run Remote Desktop with network-level authentication. Add the following setting to your answer file to enable remote desktop connections from computers running any version of Remote Desktop:

    Component Configuration Pass

    Microsoft-Windows-TerminalServices-RDP-WinStationExtensions

    4 specialize

    Component Value

    Microsoft-Windows-TerminalServices-RDP-WinStationExtensions

    UserAuthentication=0

See Also