= System Scheduled VPN Login == == Python 3 Script to Keep VPN Link Up == {{{ Set windows environment variables as follows (Computer --> Properties --> Advanced System Properties --> Environment Variables --> System Variables) VPN = SCOM VPNUSER = [​login@scom.ca] VPNPASS = [password] VPNIP = [assigned ip address to check] VPN_HEART_BEAT = [0] off, [1] event, [2] event & email logging VPN_TIME_OUT = [seconds] (default 600) }}} {{{ #monitor-local.py #Windows Python 3 Script to keep vpn up #Please Note you MUST set the VPN environment Variables in windows global config #this script picks up on these to start rasdial service # #Also - Important #You need to create a vpn connection in administrator first #Configure it any way you need #This will create a phone book file that needs to be in the system area # #CrayFishUK, my experience for all Windows XP/Vista/7/2008/8/2012/10 This will connect VPN as a SYSTEM user when system starts. #You will need to create a VPN connection #Save or not save credential it is not important. #Find a rasphone.pbk in %APPDATA%\Microsoft\Network\Connections\Pbk_hiddenPbk #More nice if you will copy it to C:\ProgramData\Microsoft\Network\Connections\Pbk\rasphone.pbk or attach to exist rasphone.pbk (it is text files) #Now you need to create scheduler task... #Requires lib3.py #Scheduler task: #Setup as follows #Use the SYSTEM ACCOUNT #Make sure it restarts this scrip every 5 minutes and at startup #Start after boot #Program to start has credential to connect VPN #The idea is to have windows run this script in the background as a system user #this prevent the vpn from dropping everytime someone loggs in ?? (its a windows thing) #So do the setup under administrator and go from there. #any issue email paul@scom.ca and i will try to help! import os, sys, struct, select, time import logging, logging.handlers import win32serviceutil import servicemanager,win32evtlogutil,win32evtlog import win32event import win32service,win32api import py2exe from lib3 import * class send_event : def __init__(self, message = 'Info', level = 'Info' ): #base_dir = os.path.dirname(sys.argv[0]) #print len(base_dir) #print base_dir #dllname = os.path.join(base_dir, "win32service.pyd") #print dllname ntl = logging.handlers.NTEventLogHandler(message, dllname="win32service.pyd") logger = logging.getLogger("") logger.setLevel(logging.DEBUG) logger.addHandler(ntl) if level == 'Error' or level == 'error' : logger.error(message) if level == 'Warn' or level == 'warn' : logger.warn(message) if level == 'Info' or level == 'info' : logger.info(message) print ('Event Sent %s' %message) #Start - get the vpn variables LOCAL_IP = os.getenv('VPNIP') RAS_CONNECT = os.getenv('VPN') RAS_USERNAME = os.getenv('VPNUSER') RAS_PASSWORD = os.getenv('VPNPASS') VPN_HEART_BEAT = [0] off, [1] event, [2] event & email logging VPN_TIME_OUT = [seconds] (default 600) print (LOCAL_IP,RAS_CONNECT,RAS_USERNAME,RAS_PASSWORD) send_event ('Checking VPN Connection Heartbeat', 'Info') a=commands('c:/windows/system32/ping -n 1 %s' %LOCAL_IP) print ('Ping returned : %s' %a.output) if 'Packets: Sent = 1, Received = 0, Lost = 1 (100% loss)' in str(a.output) : print ('Resetting Connection') send_event ('Resetting (Stopping) Connection', 'warn') command = ('C:\\Windows\\SysWOW64\\rasdial %s /disconnect' %RAS_CONNECT) a = commands(command) print ('Reconect Status %s' %a.output ) #Now reset the rasdial service command = ('c:\\windows\\system32\\sc queryex rasman') a = commands(command) print ('Rasdial Service Status %s' %a.output ) #go find the pid line b = str(a.output) #.replace ('\n','') #print (b) b = b.split('\n') #print (b) for n in range (0,len(b)) : d = b[n] if 'PID' in d: #print (d) c = d.split(': ')[1] #print (c) break if c == '0' : #is RAS running ? print ('Skipping Taskkill on RAS Service - Not Running ...') else : # Yes kill it command = ('c:\\windows\\system32\\taskkill /f /pid %s' %c) a = commands(command) print ('RAS Service Stop Status %s' %a.output ) send_event ('Pausing for Re-Connect ...', 'Info') time.sleep(5) send_event ('Re-Connecting ....', 'Info') command = ('C:\\Windows\\SysWOW64\\rasdial %s %s %s' %(RAS_CONNECT,RAS_USERNAME,RAS_PASSWORD)) print ('Running : %s' %command) a = commands(command) print ('Reconect Status %s' %a.output ) else : print ('Connection Up ...') }}} == Task Scheduler / Setup Advice for windows == {{{ CrayFishUK, my experience for all Windows XP/Vista/7/2008/8/2012/10 This will connect VPN as a SYSTEM user when system starts. You will need to create a VPN connection Save or not save credential it is not important. Find a rasphone.pbk in %APPDATA%\Microsoft\Network\Connections\Pbk_hiddenPbk More nice if you will copy it to C:\ProgramData\Microsoft\Network\Connections\Pbk\rasphone.pbk or attach to exist rasphone.pbk (it is text files) Now you need to create scheduler task... Scheduler task: Start after boot Program to start has credential to connect VPN Code: cmd /c rasdial VPNUSER VPNPASSWORD /PHONEBOOK:"C:\ProgramData\Microsoft\Network\Connections\Pbk\rasphone.pbk" && route add 10.0.0.0/8 172.16.0.254 You will need change the creator user to the SYSTEM user I have add at the end: route add 10.0.0.0/8 172.16.0.254 }}} = Restart Rasdial Service = {{{ C:\Windows\system32>sc queryex rasman SERVICE_NAME: rasman TYPE : 20 WIN32_SHARE_PROCESS STATE : 4 RUNNING (NOT_STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN) WIN32_EXIT_CODE : 0 (0x0) SERVICE_EXIT_CODE : 0 (0x0) CHECKPOINT : 0x0 WAIT_HINT : 0x0 PID : 628 FLAGS : C:\Windows\system32>taskkill /pid 628 ERROR: The process with PID 628 could not be terminated. Reason: This process can only be terminated forcefully (with /F option). C:\Windows\system32>taskkill /f /pid 628 SUCCESS: The process with PID 628 has been terminated. C:\Windows\system32> }}} == Python 3 Library (lib3) for Above == {{{ #Python Library written by paul kudla (c) 2011 #Load the librarys for the system import os,sys,time,socket import string from ftplib import FTP from decimal import * from datetime import date import datetime import smtplib from email.mime.multipart import MIMEMultipart from email.mime.base import MIMEBase from email.mime.text import MIMEText from email.utils import COMMASPACE, formatdate from email import encoders import subprocess getcontext().prec = 20 class commands: def __init__(self,command) : self.command = command #print (self.command) self.output = 'Error' self.status = '255' #sample #rc, gopath = subprocess.getstatusoutput('ls -a') self.status, self.output = subprocess.getstatusoutput(self.command) try: self.cr = self.output.split('\n') except : self.cr = [] try: self.count = len(self.cr) except : self.count = 0 self.status = int(self.status) #return count=number of lines, cr = lines split, getoutput = actual output returned, status = return code return #Email with attachment class sendmail: def __init__(self, send_from, send_to, send_subject, send_text, send_files): #send_from, send_to, send_subject, send_text, send_files): #print ('lib.py sending email') assert type(send_to)==list assert type(send_files)==list msg = MIMEMultipart() msg['From'] = send_from msg['To'] = COMMASPACE.join(send_to) msg['Date'] = formatdate(localtime=True) msg['Subject'] = send_subject msg.attach( MIMEText(send_text) ) for f in send_files: part = MIMEBase('application', "octet-stream") part.set_payload( open(f,"rb").read() ) Encoders.encode_base64(part) part.add_header('Content-Disposition', 'attachment; filename="%s"' % os.path.basename(f)) msg.attach(part) try : #Send Local? smtp = smtplib.SMTP('') #smtp.login('backup@scom.ca','522577') #print ('Sending Email to : %s' %send_to) smtp.sendmail(send_from, send_to, msg.as_string()) smtp.close() except : smtp = smtplib.SMTP('mail.scom.ca') smtp.login('backup@scom.ca','522577') #print ('Sending Email to : %s' %send_to) smtp.sendmail(send_from, send_to, msg.as_string()) smtp.close() class getdatetime: def __init__(self): self.datetime = datetime.date.today() self.datetime_now = datetime.datetime.now() self.date = str( time.strftime("%Y-%m-%d %H:%M:%S") ) self.date_long = str( time.strftime("%Y-%m-%d %H:%M:%S") ) self.date_short = str( time.strftime("%Y-%m-%d") ) self.time = str( time.strftime("%H:%M:%S") ) self.date_time_sec = self.datetime_now.strftime ("%Y-%m-%d %H:%M:%S.%f") #Return edi senddate string (short) 2011-10-31 into 111031 class create_ascii : def __init__(self,string_data) : self.string_data = str(string_data) import string self.printable = set(string.printable) self.list = list(filter(lambda x: x in self.printable, self.string_data)) #print (self.list) self.ascii = '' for n in range (0,len(self.list)) : self.ascii = self.ascii + self.list[n] self.ascii = str(self.ascii) return class edi_send_date_short: def __init__(self, senddate): self.date = senddate self.result = self.date[2] + self.date[3] + self.date[5] + self.date[6] + self.date[8] + self.date[9] def __str__(self): return '%s' % self.result ##Return edi senddate string (long) 2011-10-31 into 20111031 class edi_send_date_long: def __init__(self, senddate): self.date = senddate self.result1 = self.date[0] + self.date[1] + self.date[2] + self.date[3] + self.date[5] + self.date[6] + self.date[8] + self.date[9] self.result2 = self.date[2] + self.date[3] + self.date[5] + self.date[6] + self.date[8] + self.date[9] def __str__(self): return '%s' % (self.result1,self.result2) class gpsdeg: def __init__(self, dms): self.dms = dms self.is_positive = self.dms >= 0 self.dms = abs(self.dms) self.minutes,self.seconds = divmod(self.dms*3600,60) self.degrees,self.minutes = divmod(self.minutes,60) self.degrees = self.degrees if self.is_positive else -self.degrees def __str__(self): return '%s' % (self.degrees,self.minutes,self.seconds) class degdir: def __init__(self, degrees): self.direction_data = ['N','348.75','11.25','NNE', '11.25','33.75','NE','33.75','56.25','ENE', '56.25','78.75','E','78.75','101.25','ESE','101.25','123.75','SE','123.75','146.25','SSE','146.25','168.75','S','168.75','191.25','SSW','191.25','213.75','SW','213.75','236.25','WSW','236.25','258.75','W','258.75','281.25','WNW','281.25','303.75','NW','303.75','326.25','NNW','326.25','348.75'] def __str__(self): return '%s' % (self.direction) class gettime: def __init__(self): self.uu = time.localtime() self.todaystime = str(self.uu[3]) #get the hr if int(self.uu[3]) < 10: #add a zero self.todaystime = '0' + self.todaystime if int(self.uu[4]) < 10: #add a zero in front self.todaystime = self.todaystime +":0"+str(self.uu[4]) else: self.todaystime = self.todaystime +":"+str(self.uu[4]) def __str__(self): return self.todaystime class array2dbstring: def __init__(self,array): self.data = array for self.nn in range(0,len(self.data)): print ('Data %s \t\t %s' % (str(self.data[self.nn]),str( type(self.data[self.nn])) ) ) #change all data into strings self.a = type(self.data[self.nn]) self.a = str(self.a) if 'Decimal' in self.a : self.n = str(self.data[self.nn]) #self.n = self.n.lstrip("'") #self.n = self.n.rstrip("'") #self.data[self.nn] = float(self.data[self.nn]) self.data[self.nn] = str('0.00') print (self.n) if 'NoneType' in self.a : self.data[self.nn] = '' if 'datetime.datetime' in self.a : #self.data[self.nn] = str(self.data[self.nn]) #self.data[self.nn].replace self.data[self.nn] = '2012-01-25 00:00:00' self.data = str(self.data) self.data = self.data.lstrip('[') self.data = self.data.rstrip(']') self.data = self.data.replace("'NULL'","NULL") #self.data = self.data.replace(" '',", ",") #self.data = self.data.replace(" '0.00'","'100'") def __str__(self): return self.data class get_hostname: def __init__(self): self.hostname = socket.gethostname() }}} = Windows RDP Config Settings = || Setting || Type || Default value || Description and possible values || Settable from RDC GUI? || RDP+ equivalent || 5 || 5 || 6 || 6 || 7 || 7 || 8 || 8 || # || || administrative session || i || 0 || Connect to the administrative session of the remote computer. || Command line || /console, /admin ||   ||   ||   || X || X || X || X || X || X || || 0 - Do not use the administrative session. || || 1 - Connect to the administrative session. || || allow desktop composition || i || 0 || Determines whether desktop composition (needed for Aero) is permitted when you log on to the remote computer. || Yes ||   ||   || X || X || X || X || X || X || X || X || || 0 - Disable desktop composition in the remote session. || || 1 - Desktop composition is permitted. || || allow font smoothing || i || 0 || Determines whether font smoothing may be used in the remote session. || Yes ||   ||   || X || X || X || X || X || X || X || X || || 0 - Disable font smoothing in the remote session. || || 1 - Font smoothing is permitted. || || alternate full address || s ||   || Specifies an alternate name or IP address of the remote computer that you want to connect to. || No ||   ||   ||   ||   ||   || X || X || X || X || X || || Will be overruled by RDP+. || || alternate shell || s ||   || Specifies a program to be started automatically when you connect to a remote computer. The value should be a valid path to an executable file. || Yes || /start || X || X || X || X || X || X || X || X || X || || This setting only works when connecting to servers. || || audiocapturemode || i || 0 || Determines how sounds captured (recorded) on the local computer are handled when you are connected to the remote computer. || Yes ||   ||   ||   ||   ||   || X || X || X || X || X || ||   || || 0 - Do not capture audio from the local computer. || || 1 - Capture audio from the local computer and send to the remote computer. || || audiomode || i || 0 || Determines how sounds on a remote computer are handled when you are connected to the remote computer. || Yes || /[no]sound || X || X || X || X || X || X || X || X || X || ||   || || 0 - Play sounds on the local computer. || || 1 - Play sounds on the remote computer. || || 2 - Do not play sounds. || || audioqualitymode || i || 0 || Determines the quality of the audio played in the remote session. || No ||   ||   ||   ||   ||   || X || X || X || X || X || ||   || || 0 - Dynamically adjust audio quality based on available bandwidth. || || 1 - Always use medium audio quality. || || 2 - Always use uncompressed audio quality. || || authentication level || i || 2 || Determines what should happen when server authentication fails. || Yes ||   ||   || X || X || X || X || X || X || X || X || ||   || || 0 - If server authentication fails, connect without giving a warning. || || 1 - If server authentication fails, do not connect. || || 2 - If server authentication fails, show a warning and allow the user to connect or not. || || 3 - Server authentication is not required. || ||   || || This setting will be overruled by RDP+. || || autoreconnect max retries || i || 20 || Determines the maximum number of times the client computer will try to reconnect to the remote computer if the connection is dropped. || No ||   || X || X || X || X || X || X || X || X || X || || Note: The maximum value Remote Desktop can handle is 200. || || autoreconnection enabled || i || 1 || Determines whether the client computer will automatically try to reconnect to the remote computer if the connection is dropped. || Yes ||   || X || X || X || X || X || X || X || X || X || ||   || || 0 - Do not attempt to reconnect. || || 1 - Attempt to reconnect. || || bandwidthautodetect || i || 1 || Enables the option for automatic detection of the network type. Used in conjunction with networkautodetect. Also see connection type. || Yes ||   ||   ||   ||   ||   ||   ||   || X || X || X || ||   || || 0 - Do not enable the option for automatic network detection. || || 1 - Enable the option for automatic network detection. || || bitmapcachepersistenable || i || 1 || Determines whether bitmaps are cached on the local computer (disk-based cache). Bitmap caching can improve the performance of your remote session. || Yes ||   ||   || X || X || X || X || X || X || X || X || ||   || || 0 - Do not cache bitmaps. || || 1 - Cache bitmaps. || || bitmapcachesize || i || 1500 || Specifies the size in kilobytes of the memory-based bitmap cache. The maximum value is 32000. || No ||   || X || X || X || X || X || X || X || X || X || || compression || i || 1 || Determines whether the connection should use bulk compression. || No ||   || X || X || X || X || X || X || X || X || X || ||   || || 0 - Do not use bulk compression. || || 1 - Use bulk compression. || || connect to console || i || 0 || Connect to the console session of the remote computer. || Command line || /console, /admin || X || X || X ||   ||   ||   ||   ||   ||   || ||   || || 0 - Connect to a normal session. || || 1 - Connect to the console screen. || || connection type || i || 2 || Specifies pre-defined performance settings for the Remote Desktop session. || Yes ||   ||   ||   ||   ||   || X || X || X || X || X || ||   || || 1 - Modem (56 Kbps). || || 2 - Low-speed broadband (256 Kbps - 2 Mbps). || || 3 - Satellite (2 Mbps - 16 Mbps with high latency). || || 4 - High-speed broadband (2 Mbps - 10 Mbps). || || 5 - WAN (10 Mbps or higher with high latency). || || 6 - LAN (10 Mbps or higher). || || 7 - Automatic bandwidth detection. Requires bandwidthautodetect. || ||   || || By itself, this setting does nothing. When selected in the RDC GUI, this option changes several performance related settings (themes, animation, font smoothing, etcetera). These separate settings always overrule the connection type setting. || || desktopheight || i || 600 || The height (in pixels) of the remote session desktop. || Limited || /h || X || X || X || X || X || X || X || X || X || || desktop size id || i || 0 || Specifies pre-defined dimensions of the remote session desktop. || Yes ||   || X || X || X || X || X || X || X || X || X || ||   || || 0 - 640x480. || || 1 - 800x600. || || 2 - 1024x768. || || 3 - 1280x1024. || || 4 - 1600x1200. || ||   || || This setting is ignored when either /w and /h, or desktopwidth and desktopheight are already specified. || || desktopwidth || i || 800 || The width (in pixels) of the remote session desktop. || Limited || /w || X || X || X || X || X || X || X || X || X || || devicestoredirect || s ||   || Determines which supported Plug and Play devices on the client computer will be redirected and available in the remote session. || Yes || /[no]drives ||   ||   || X || X || X || X || X || X || X || ||   || || No value specified - Do not redirect any supported Plug and Play devices. || || * - Redirect all supported Plug and Play devices, including ones that are connected later. || || !DynamicDevices - Redirect any supported Plug and Play devices that are connected later. || || The hardware ID for one or more Plug and Play devices - Redirect the specified supported Plug and Play device(s). || || disable ctrl+alt+del || i || 1 || Determines whether you have to press CTRL+ALT+DELETE before entering credentials after you are connected to the remote computer. || No ||   || X || X || X || X || X || X || X || X || X || ||   || || 0 - CTRL+ALT+DELETE is required before logging in. || || 1 - CTRL+ALT+DELETE is not required. You can logon immediately. || ||   || || Note: When disabled, this setting will also delay the autologin until the user has pressed CTRL+ALT+DELETE. || || disable full window drag || i || 1 || Determines whether window content is displayed when you drag the window to a new location. || Yes ||   || X || X || X || X || X || X || X || X || X || ||   || || 0 - Show the contents of the window while dragging. || || 1 - Show an outline of the window while dragging. || || disable menu anims || i || 1 || Determines whether menus and windows can be displayed with animation effects in the remote session. || Yes ||   || X || X || X || X || X || X || X || X || X || ||   || || 0 - Menu and window animation is permitted. || || 1 - No menu and window animation. || || disable themes || i || 0 || Determines whether themes are permitted when you log on to the remote computer. || Yes ||   || X || X || X || X || X || X || X || X || X || ||   || || 0 - Themes are permitted. || || 1 - Disable theme in the remote session. || || disable wallpaper || i || 1 || Determines whether the desktop background is displayed in the remote session. || Yes || /[no]wallpaper || X || X || X || X || X || X || X || X || X || ||   || || 0 - Display the wallpaper. || || 1 - Do not show any wallpaper. || || disableconnectionsharing || i || 0 || Determines whether a new Terminal Server session is started with every launch of a !RemoteApp to the same computer and with the same credentials. || No ||   ||   ||   || X || X || X || X || X || X || X || ||   || || 0 - No new session is started. The currently active session of the user is shared. || || 1 - A new login session is started for the !RemoteApp. || || disableremoteappcapscheck || i || 0 || Specifies whether the Remote Desktop client should check the remote computer for !RemoteApp capabilities. || No ||   ||   ||   ||   ||   || X || X || X || X || X || || 0 - Check the remote computer for !RemoteApp capabilities before logging in. || || 1 - Do not check the remote computer for !RemoteApp capabilities.Note: This setting must be set to 1 when connecting to Windows XP SP3, Vista or 7 computers with !RemoteApps configured on them. This is the default behavior of RDP+. || || displayconnectionbar || i || 1 || Determines whether the connection bar appears when you are in full screen mode. || Yes ||   || X || X || X || X || X || X || X || X || X || ||   || || 0 - Do not show the connection bar. || || 1 - Show the connection bar. || ||   || || Will be overruled by RDP+ when using the parameter /noclose. || || domain || s ||   || Specifies the name of the domain of the user. || Yes || /u, /domain || X || X || X || X || X || X || X || X || X || ||   || || Will be ignored/overruled by RDP+. || || drivestoredirect || s ||   || Determines which local disk drives on the client computer will be redirected and available in the remote session. || Yes || /[no]drives ||   ||   || X || X || X || X || X || X || X || ||   || || No value specified - Do not redirect any drives. || || * - Redirect all disk drives, including drives that are connected later. || || !DynamicDrives - Redirect any drives that are connected later. || || The drive and labels for one or more drives - Redirect the specified drive(s). || || enablecredsspsupport || i || 1 || Determines whether Remote Desktop will use CredSSP for authentication if it's available. || No ||   ||   ||   || X || X || X || X || X || X || X || ||   || || 0 - Do not use CredSSP, even if the operating system supports it. || || 1 - Use CredSSP, if the operating system supports it. || || enablesuperpan || i || 0 || Determines whether !SuperPan is enabled or disabled. !SuperPan allows the user to navigate a remote desktop in full-screen mode without scroll bars, when the dimensions of the remote desktop are larger than the dimensions of the current client window. The user can point to the window border, and the desktop view will scroll automatically in that direction. || No ||   ||   ||   ||   ||   || X || X || X || X || X || ||   || || 0 - Do not use !SuperPan. The remote session window is sized to the client window size. || || 1 - Enable !SuperPan. The remote session window is sized to the dimensions specified through /w and /h, or through desktopwidth and desktopheight. || || full address || s ||   || Specifies the name or IP address (and optional port) of the remote computer that you want to connect to. || Yes || /v || X || X || X || X || X || X || X || X || X || ||   || || Will be ignored by RDP+. || || gatewaycredentialssource || i || 4 || Specifies the credentials that should be used to validate the connection with the RD Gateway. || Yes ||   ||   ||   || X || X || X || X || X || X || X || ||   || || 0 - Ask for password (NTLM). || || 1 - Use smart card. || || 4 - Allow user to select later. || || gatewayhostname || s ||   || Specifies the hostname of the RD Gateway. || Yes ||  /rdgateway ||   ||   || X || X || X || X || X || X || X || || gatewayprofileusagemethod || i || 0 || Determines the RD Gateway authentication method to be used. || Yes ||   ||   ||   || X || X || X || X || X || X || X || ||   || || 0 - Use the default profile mode, as specified by the administrator. || || 1 - Use explicit settings. || || gatewayusagemethod || i || 4 || Specifies if and how to use a Remote Desktop Gateway (RD Gateway) server. || Yes ||   ||   ||   || X || X || X || X || X || X || X || ||   || || 0 - Do not use an RD Gateway server. || || 1 - Always use an RD Gateway, even for local connections. || || 2 - Use the RD Gateway if a direct connection cannot be made to the remote computer (i.e. bypass for local addresses). || || 3 - Use the default RD Gateway settings. || || 4 - Do not use an RD Gateway server. || ||   || || 0 and 4 have the same effect, but setting the method to 4 also sets the option for bypassing local addresses in the Remote Desktop user interface. || || keyboardhook || i || 2 || Determines how Windows key combinations are applied when you are connected to a remote computer. || Yes ||   || X || X || X || X || X || X || X || X || X || ||   || || 0 - Windows key combinations are applied on the local computer. || || 1 - Windows key combinations are applied on the remote computer. || || 2 - Windows key combinations are applied in full-screen mode only. || || negotiate security layer || i || 1 || Determines whether the level of security is negotiated or not. || No ||   ||   ||   || X || X || X || X || X || X || X || ||   || || 0 - Security layer negotiation is not enabled and the session is started by using Secure Sockets Layer (SSL). || || 1 - Security layer negotiation is enabled and the session is started by using x.224 encryption. || || networkautodetect || i || 1 || Determines whether to use auomatic network bandwidth detection or not. Requires the option bandwidthautodetect to be set and correlates with connection type 7. || Yes ||   ||   ||   ||   ||   ||   ||   || X || X || X || ||   || || 0 - Use automatic network bandwitdh detection. || || 1 - Do not use automatic network bandwitdh detection. || || password 51 || b ||   || The user password in a binary hash value. Will be overruled by RDP+. || Yes || /p, /pe, /i || X || X || X || X || X || X || X || X || X || || pinconnectionbar || i || 1 || Determines whether or not the connection bar should be pinned to the top of the remote session upon connection when in full screen mode. || No ||   || X || X || X || X || X || X || X || X || X || ||   || || 0 - The connection bar should not be pinned to the top of the remote session. || || 1 - The connection bar should be pinned to the top of the remote session. || || prompt for credentials || i || 0 || Determines whether Remote Desktop Connection will prompt for credentials when connecting to a remote computer for which the credentials have been previously saved. || Yes ||   ||   ||   || X || X || X || X || X || X || X || ||   || || 0 - Remote Desktop will use the saved credentials and will not prompt for credentials. || || 1 - Remote Desktop will prompt for credentials. || ||   || || This setting is ignored by RDP+. || || prompt for credentials on client || i || 0 || Determines whether Remote Desktop Connection will prompt for credentials when connecting to a server that does not support server authentication. || No ||   ||   ||   ||   || X || X || X || X || X || X || ||   || || 0 - Remote Desktop will not prompt for credentials. || || 1 - Remote Desktop will prompt for credentials. || ||   || || This setting is ignored by RDP+. || || promptcredentialonce || i || 1 || When connecting through an RD Gateway, determines whether RDC should use the same credentials for both the RD Gateway and the remote computer. || Yes ||   ||   ||   ||   || X || X || X || X || X || X || ||   || || 0 - Remote Desktop will not use the same credentials . || || 1 - Remote Desktop will use the same credentials for both the RD gateway and the remote computer. || || public mode || i || 0 || Determines whether Remote Desktop Connection will be started in public mode. || Command line ||   ||   ||   ||   ||   || X || X || X || X || X || ||   || || 0 - Remote Desktop will not start in public mode . || || 1 - Remote Desktop will start in public mode and will not save any user data (credentials, bitmap cache, MRU) on the local machine. || ||   || || This setting is incompatible with autologin and some other features and therefore ignored by RDP+. || || redirectclipboard || i || 1 || Determines whether the clipboard on the client computer will be redirected and available in the remote session and vice versa. || Yes ||   ||   ||   || X || X || X || X || X || X || X || ||   || || 0 - Do not redirect the clipboard. || || 1 - Redirect the clipboard. || || redirectcomports || i || 0 || Determines whether the COM (serial) ports on the client computer will be redirected and available in the remote session. || Yes ||   || X || X || X || X || X || X || X || X || X || ||   || || 0 - The COM ports on the local computer are not available in the remote session. || || 1 - The COM ports on the local computer are available in the remote session. || || redirectdirectx || i || 1 || Determines whether DirectX will be enabled for the remote session. || No ||   ||   ||   ||   ||   || X || X || X || X || X || ||   || || 0 - Do not enable DirectX rendering. || || 1 - Enable DirectX rendering in the remote session. || || redirectdrives || i || 0 || Determines whether local disk drives on the client computer will be redirected and available in the remote session. || Yes || /[no]drives || X || X ||   ||   ||   ||   ||   ||   ||   || ||   || || 0 - The drives on the local computer are not available in the remote session. || || 1 - The drives on the local computer are available in the remote session. || ||   || || Note: This setting is replaced by drivestoredirect from RDC 6.0 onward. || || redirectposdevices || i || 0 || Determines whether Microsoft Point of Service (POS) for .NET devices connected to the client computer will be redirected and available in the remote session. || No ||   ||   ||   || X || X || X || X || X || X || X || ||   || || 0 - The POS devices from the local computer are not available in the remote session. || || 1 - The POS devices from the local computer are available in the remote session. || || redirectprinters || i || 1 || Determines whether printers configured on the client computer will be redirected and available in the remote session. || Yes || /[no]printers || X || X || X || X || X || X || X || X || X || ||   || || 0 - The printers on the local computer are not available in the remote session. || || 1 - The printers on the local computer are available in the remote session. || || redirectsmartcards || i || 1 || Determines whether smart card devices on the client computer will be redirected and available in the remote session. || Yes ||   || X || X || X || X || X || X || X || X || X || ||   || || 0 - The smart card device on the local computer is not available in the remote session. || || 1 - The smart card device on the local computer is available in the remote session. || || remoteapplicationcmdline || s ||   || Optional command line parameters for the !RemoteApp. || No ||   ||   ||   || X || X || X || X || X || X || X || || remoteapplicationfile || s ||   || Specifies a file to be opened on the remote computer by the !RemoteApp. || No || /remotefile ||   ||   || X || X || X || X || X || X || X || ||   || || Note: For local files to be opened, you must also enable drive redirection for (at least) the source drive. || || remoteapplicationexpandcmdline || i || 1 || Determines whether environment variables contained in the !RemoteApp command line parameter should be expanded locally or remotely. || No ||   ||   ||   || X || X || X || X || X || X || X || ||   || || 0 - Environment variables should be expanded to the values of the local computer. || || 1 - Environment variables should be expanded on the remote computer to the values of the remote computer. || || remoteapplicationexpandworkingdir || i || 0 || Determines whether environment variables contained in the !RemoteApp working directory parameter should be expanded locally or remotely. || No ||   ||   ||   || X || X || X || X || X || X || X || ||   || || 0 - Environment variables should be expanded to the values of the local computer. || || 1 - Environment variables should be expanded on the remote computer to the values of the remote computer. || ||   || || Note: The !RemoteApp working directory is specified through the shell working directory parameter. || || remoteapplicationicon || s ||   || Specifies the file name of an icon file to be displayed in the Remote Desktop interface while starting the !RemoteApp. By default RDC will show the standard Remote Desktop icon. || No ||   ||   ||   || X || X || X || X || X || X || X || ||   || || Note: Only .ico files are supported. || || remoteapplicationmode || i || 0 || Determines whether a !RemoteApp shoud be launched when connecting to the remote computer. || No || /remoteapp ||   ||   || X || X || X || X || X || X || X || ||   || || 0 - Use a normal session and do not start a !RemoteApp. || || 1 - Connect and launch a !RemoteApp. || || remoteapplicationname || s ||   || Specifies the name of the !RemoteApp in the Remote Desktop interface while starting the !RemoteApp. || No ||   ||   ||   || X || X || X || X || X || X || X || || remoteapplicationprogram || s ||   || Specifies the alias or executable name of the !RemoteApp. || No || /remoteapp ||   ||   ||   || X || X || X || X || X || X || || screen mode id || i || 2 || Determines whether the remote session window appears full screen when you connect to the remote computer. || Yes || /f[ullscreen], /fit, || X || X || X || X || X || X || X || X || X || ||   || /max, /w, /h || || 1 - The remote session will appear in a window. ||   || || 2 - The remote session will appear full screen. ||   || || server port || i || 3389 || Defines an alternate default port for the Remote Desktop connection. || Command line || /v || X || X || X || X || X || X || X || X || X || ||   || || Will be overruled by any port number appended to the server name. || || session bpp || i || 32 || Determines the color depth (in bits) on the remote computer when you connect. || Yes ||   || X || X || X || X || X || X || X || X || X || ||   || || 8 - 256 colors (8 bit). || || 15 - High color (15 bit). || || 16 - High color (16 bit). || || 24 - True color (24 bit). || || 32 - Highest quality (32 bit). || || shell working directory || s ||   || The working directory on the remote computer to be used if an alternate shell is specified. || Yes ||   || X || X || X || X || X || X || X || X || X || || smart sizing || i || 0 || Determines whether the client computer should scale the content on the remote computer to fit the window size of the client computer when the window is resized. || No ||   || X || X || X || X || X || X || X || X || X || ||   || || 0 - The client window display will not be scaled when resized. || || 1 - The client window display will be scaled when resized. || || span monitors || i || 0 || Determines whether the remote session window will be spanned across multiple monitors when you connect to the remote computer. || Yes || /span ||   ||   || X || X || X || X || X || X || X || ||   || || 0 - Monitor spanning is not enabled. || || 1 - Monitor spanning is enabled. || ||   || || Note: When using Remote Desktop Connection 7 (Windows 7/2008), the use multimon setting is recommended. || || superpanaccelerationfactor || i || 1 || Specifies the number of pixels that the screen view scrolls in a given direction for every pixel of mouse movement by the client when in !SuperPan mode || No ||   ||   ||   ||   ||   || X || X || X || X || X || || usbdevicestoredirect || s ||   || Determines which supported RemoteFX USB devices on the client computer will be redirected and available in the remote session when you connect to a remote session that supports RemoteFX USB redirection. || Yes ||   ||   ||   ||   ||   ||   || X || X || X || X || ||   || || No value specified - Do not redirect any supported RemoteFX USB devices. || || * - Redirect all supported RemoteFX USB devices for redirection that are not redirected by high-level redirection mechanisms. || || {Device Setup Class GUID} - Redirect all supported RemoteFX USB devices that are members of the specified device setup class. || || USB\InstanceID - Redirect the supported RemoteFX USB device specified by the given instance ID. || || -USB\InstanceID - Do not redirect the supported RemoteFX USB device specified by the given instance ID, even if the device is in a device setup class that is redirected.. || || use multimon || i || 0 || Determines whether the session should use true multiple monitor support when connecting to the remote computer. || Yes || /multimon ||   ||   ||   ||   || X || X || X || X || X || ||   || || 0 - Do not enable multiple monitor support. || || 1 - Enable multiple monitor support. || || username || s ||   || Specifies the name of the user account that will be used to log on to the remote computer. || Yes || /u || X || X || X || X || X || X || X || X || X || ||   || || Will be ignored by RDP+. || || videoplaybackmode || i || 1 || Determines whether RDC will use RDP efficient multimedia streaming for video playback. || No ||   ||   ||   ||   ||   || X || X || X || X || X || ||   || || 0 - Do not use RDP efficient multimedia streaming for video playback. || || 1 - Use RDP efficient multimedia streaming for video playback when possible. || || winposstr || s || 0,3,0,0,800,600 || Specifies the position and dimensions of the session window on the client computer. || No || /f[ullscreen], /fit, || X || X || X || X || X || X || X || X || X || ||   || /max, /w, /h, /pos || || Will be overruled by RDP+. ||   || == RDP Calculating Screen Location == * Basically use '''winposstr:s:0,1,110,55,1680,1050''' * to center on 1920 x 1080 Monitor for the most part in the windows .rdp settings file. {{{ Calculating the Values for winposstr The numbers that you will use depend on how many monitors you have, the screen resolutions of each, and which monitor you have selected to be your primary monitor. Left edge position determines the monitor The first of the last four numbers, which is the most important, indicates the position of the left edge of the window. If your primary monitor is in the center and you have monitors to the left and right, you will use a negative number for the monitors to the left, and a positive number for the monitors to the right. For example, if you have two monitors to the left that each have a resolution of 1680 x 1050, use -1680 to place the session window on the monitor to the immediate left, and double that (-3360) to place the window on the leftmost monitor. winposstr:s:0,1,-1680,0,0,1050 winposstr:s:0,1,-3360,0,-1680,1050 If your primary monitor has a resolution of 1200 x 1920, use 1200 to place the window on the monitor on the immediate right. This works because that pixel position is where the primary monitor leaves off (and the monitor on the right begins). winposstr:s:0,1,1200,0,2880,1050 If you have two monitors on the right with a resolution of 1680 x 1050, and want to place the window on the rightmost monitor, simply add 1200 to 1680 to get 2880. winposstr:s:0,1,2880,0,4560,1050 Top and Bottom Edges The other numbers only really come into play when the window is restored (not maximized) and can be adjusted to taste. The second number (third from the end) indicates the topmost edge of the window, so you can leave this number at 0 unless you have special requirements. The fourth (last) number is the vertical resolution (=bottom) of the window. You can leave this at the maximum vertical resolution of the monitor, as in the examples above. winposstr:s:0,1,1200,0, 2880,1050 Right Edge The right edge of the window is expressed by the next to the last number. Unless you prefer otherwise, this can be set to the same size as the maximized window. ╔══════════════════╦════════════════════════════╦════════════════════════════════════╗ ║ Monitor ║ Right Edge Calculation ║ Winposstr Value ║ ╠══════════════════╬════════════════════════════╬════════════════════════════════════╣ ║ Leftmost ║ -3360 + 1680 = -1680 ║ winposstr:s:0,1,-3360,0,-1680,1050 ║ ║ Immediate left ║ -1680 + 1680 = 0 ║ winposstr:s:0,1,-1680,0,0,1050 ║ ║ Immediate right ║ 1200 + 1680 = 2880 ║ winposstr:s:0,1,1200,0,2880,1050 ║ ║ Rightmost ║ 1200 + 1680 + 1680 = 4560 ║ winposstr:s:0,1,2880,0,4560,1050 ║ ╚══════════════════╩════════════════════════════╩════════════════════════════════ }}}