How are RDP credentials stored on a device?
- Datto RMM
The Agent Browser lets you save RDP credentials upon launching an RDP session to a device. These credentials are stored locally (in the user profile directory) to a device, and are not shared across different user accounts.
When stored, user credentials are encrypted. The encryption is coded within the agent and uses a combination of the following:
- The Windows Data Protection API
- Password-Based Key Derivation
- The password-derived key is used with Triple DES