Question. For remote headless Windows servers which can only be accessed internally by specific people via RDP, is there really an added security benefit for locking the session after the “standard” 15 minutes? Going back to the lock screen doesn’t prevent RDP session hijacking if someone really wanted to do that.
Not only do we work remotely the majority of the time, our work computers already lock after 15 minutes of being idle.
Am I missing something here?
You must log in or # to comment.