How to connect to Remote Desktop on Windows

Connecting to a Windows PC using Remote Desktop Protocol (RDP) provides full graphical access for administration and troubleshooting without being physically at the machine.

The target PC runs the Remote Desktop host service, while the local PC uses Remote Desktop Connection (mstsc) to establish an encrypted session over the network, typically using TCP/UDP 3389 with Network Level Authentication (NLA) enabled.

The target PC must support hosting Remote Desktop (for example Windows 10 Pro, Windows 11 Pro, Enterprise, Education, or Windows Server) and must be reachable through firewall and routing rules. Directly exposing 3389 to the public internet increases attack surface; prefer a VPN or RD Gateway for off-site access.

Related: How to enable Remote Desktop Protocol (RDP) in Windows
Related: How to check IP address in Windows

Steps to connect to Remote Desktop on Windows:

  1. Enable Remote Desktop on the target PC from SettingsSystemRemote Desktop.

    Hosting Remote Desktop is not available on Windows Home editions.

  2. Add the intended account under SettingsSystemRemote DesktopRemote Desktop users.

    Local Administrators are allowed by default; add non-admin accounts explicitly.

  3. Allow Remote Desktop inbound through Windows Defender Firewall on the target PC.

    Limit the rule to Private or Domain profiles when possible.

  4. Record the target PC IPv4 address. 
    ipconfig

Ethernet adapter Ethernet:

   IPv4 Address. . . . . . . . . . . : 192.168.1.100
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 192.168.1.1

    Use the target PC name instead of an IP when name resolution is available.

  5. Connect the local PC to the target network.

    Use a VPN when connecting from outside the local network.

  6. Forward TCP/UDP 3389 to the target PC only when access must come from the internet.

    Direct internet exposure of RDP is aggressively scanned and brute-forced; prefer a VPN or RD Gateway, or restrict inbound access to known source IPs.

  7. Test TCP 3389 reachability from the local PC. 
    PS C:\> Test-NetConnection -ComputerName 192.168.1.100 -Port 3389

ComputerName     : 192.168.1.100
RemoteAddress    : 192.168.1.100
RemotePort       : 3389
InterfaceAlias   : Ethernet
SourceAddress    : 192.168.1.50
TcpTestSucceeded : True
  8. Open the Run dialog on the local PC.

    Use Windows + R to open Run quickly.

  9. Launch Remote Desktop Connection by running mstsc.
  10. Enter the target PC name or IPv4 address in the Computer field.
  11. Start the connection by selecting Connect.
  12. Authenticate with an account permitted for Remote Desktop.

    Use COMPUTERNAME\username for a local account, DOMAIN\username for a domain account, or the Microsoft account email address when applicable.

  13. Confirm the remote computer identity prompt if shown.

    Only accept the prompt when the computer name or certificate thumbprint matches expectations.

  14. Verify the remote session is active from the connection bar.
  15. Sign out from the remote session when finished.

    Disconnect leaves programs running on the remote PC, while Sign out ends the session.