diff options
Diffstat (limited to 'docs')
| -rw-r--r-- | docs/man/sesman.ini.5 | 25 | ||||
| -rw-r--r-- | docs/man/xrdp.ini.5 | 6 |
2 files changed, 30 insertions, 1 deletions
diff --git a/docs/man/sesman.ini.5 b/docs/man/sesman.ini.5 index 84beafb4..a1ba3a50 100644 --- a/docs/man/sesman.ini.5 +++ b/docs/man/sesman.ini.5 @@ -116,6 +116,31 @@ Sets the time(in seconds) limit before a disconnected session is killed. If set to \fI0\fR, automatic killing is disabled. .br +.TP +\fBPolicy\fR=\fI[Default|UBD|UBI|UBC|UBDI|UBDC]\fR +Session allocation policy. By Default, a new session is created +for the combination <User,BitPerPixel> when using Xrdp, and +for the combination <User,BitPerPixel,DisplaySize> when using Xvnc. +This behaviour can be changed by setting session policy to: +.br + +.br +\fBUBD\fR - session per <User,BitPerPixel,DisplaySize> +.br +\fBUBI\fR - session per <User,BitPerPixel,IPAddr> +.br +\fBUBC\fR - session per <User,BitPerPixel,Connection> +.br +\fBUBDI\fR - session per <User,BitPerPixel,DisplaySize,IPAddr> +.br +\fBUBDC\fR - session per <User,BitPerPixel,DisplaySize,Connection> +.br + +.br +Note that the criteria <User,BitPerPixel> can not be turned off +and <DisplaySize> will always be checkt when for Xvnc connections. +.br + .SH "SECURITY" The following parameters can be used in the \fB[Sessions]\fR section: diff --git a/docs/man/xrdp.ini.5 b/docs/man/xrdp.ini.5 index 7b32a9f0..131c0796 100644 --- a/docs/man/xrdp.ini.5 +++ b/docs/man/xrdp.ini.5 @@ -54,7 +54,7 @@ If set to \fB0\fR, \fBfalse\fR or \fBno\fR this option disables all channels \fB See section \fBCHANNELS\fP below for more fine grained options. .TP -\fBcrypt_level\fP=\fIlow|medium|high\fP +\fBcrypt_level\fP=\fIlow|medium|high|fips\fP .\" <http://blogs.msdn.com/b/openspecification/archive/2011/12/08/encryption-negotiation-in-rdp-connection.aspx> RDP connection are controlled by two encryption settings: \fIEncryption Level\fP and \fIEncryption Method\fP. The only supported \fIEncryption Method\fP is \fB40BIT_ENCRYPTION\fP, \fB128BIT_ENCRYPTION\fP and \fB56BIT_ENCRYPTION\fP are currently not supported. @@ -70,6 +70,10 @@ All data sent between the client and the server is protected by encryption based .TP .B high All data sent between the client and server is protected by encryption based on the server's maximum key strength. +.TP +.B fips +All data sent between the client and server is protected using Federal Information Processing Standard 140-1 validated encryption methods. +.I This level is required for Windows clients (mstsc.exe) if the client's group policy enforces FIPS-compliance mode. .RE .TP |