Changing the RDP port on a Windows Server

Remote Desktop Protocol (RDP) is the administrative console access. Sometimes it may be necessary to change the default TCP port, used for the network access for better security. RDP default port is TCP 3389. If you want to change the port that Remote Desktop listens on, please follow these steps:

Warning:

Modifying the registry is risky, serious problems might occur if you modify the registry incorrectly. So be sure that you have a full back up of registry before you modify it.


Step 1:

Start Registry Editor. (Press Windows logo + R and type “regedit” in Run dialog)


Step 2:

Locate the registry subkey for RDP port:

In Registry Editor find this hiv:

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp\PortNumber


Step 3:

On the Edit menu, click Modify and then click Decimal (The default port assignment is represented as D3D in hexadecimal)


Step 4:

Type the new port number and then click OK.


Step 5:

Quite the Registry Editor.


Step 6:

Restart the machine.

The Window Server will now listen on the new port. You may have to change the firewall to allow the new port number before you connect to this computer. You MUST type the new port number, when you try to connect to this computer by using RDP.

                For Example: 10.10.10.10:1234 or testserver:1234

This is a quick method to update your Windows firewall:

Control Panel > System Security > Windows Firewall > Advance Settings > Inbound Rules > New Rule > Select Ports > Next > Give your new port number > Allow ALL in case you want to RDP one that port locally or public > Give it a name > Finish.

Other Knowledge Base Topics

"