Due to increased risk, Berkeley Lab will now require VPN for off-site RDP to a Lab computer starting on Monday, June 12, 2023. Additionally, all computers accepting RDP must install CrowdStrike.
Remote Desktop Protocol (RDP) is a built-in Windows technology for providing remote access to another computer without installation of additional software. Evolving cyber attack trends, environmental changes, lack of MFA, and minimal controls to contain an RDP security incident necessitate changes to usage of remote desktop connections.
These new protocols limit the exposure of the RDP connection to the Internet while also adding Crowdstrike to reduce damage from a successful attack. Note: This change applies to RDP to DHCP computers and will not affect computers with static IP addresses; they may continue to use RDP from off-site without VPN.
If you have additional questions, please email security@lbl.gov.
in the bottom right or navigate to