use wddm graphics display driver for remote desktop connections use wddm graphics display driver for remote desktop connections

If you enable or do not configure this policy setting, Remote Desktop Connections will use WDDM graphics display driver. In the VM, set a codec that is appropriate for the anticipated end-user workloads. You can deploy a GPO to fix this company-wide: Administrative Templates (Computers) > Windows Components > Remote Desktop Service > Remote Desktop Session Host: Disable the setting "Use WDDM graphics display driver for Remote Desktop Connection" Remote Desktop connection failing outside of LAN - The Spiceworks Community PSA: If you're having issues connecting via RDP after updating - reddit Configure Microsoft Defender Application Guard clipboard settings, Configure Microsoft Defender Application Guard print settings, Prevent enterprise websites from loading non-enterprise content in Microsoft Edge and Internet Explorer, Turn on Microsoft Defender Application Guard in Managed Mode, Use a common set of exploit protection settings, Allow Address bar drop-down list suggestions, Allow configuration updates for the Books Library, Allow extended telemetry for the Books tab, Allow Microsoft Edge to pre-launch at Windows startup, when the system is idle, and each time Microsoft Edge is closed, Allow Microsoft Edge to start and load the Start and New Tab page at Windows startup and each time Microsoft Edge is closed, Always show the Books Library in Microsoft Edge, Configure search suggestions in Address bar, Configure the Adobe Flash Click-to-Run setting. Disable WDDM graphics driver. Click Display Make sure "Use all my monitory for the remote session" is checked. DWM.EXE High CPU (One Core) On Target System after Remote Desktop Register domain joined computers as devices, Configure the server address, refresh interval, and issuer certificate authority of a target Subscription Manager, Control Event Log behavior when the log file reaches its maximum size, Events.asp program command line parameters, Hide previous versions list for local files, Hide previous versions list for remote files, Hide previous versions of files on backup location, Prevent restoring local previous versions, Prevent restoring previous versions from backups, Prevent restoring remote previous versions, Allow the use of remote paths in file shortcut icons. Set a default associations configuration file, Start File Explorer with ribbon minimized, Turn off Data Execution Prevention for Explorer, Turn off numerical sorting in File Explorer, Verify old and new Folder Redirection targets point to the same share before redirecting, Turn off tracking of last play time of games in the Games folder, Prevent the computer from joining a homegroup, Restrict Accelerators to those deployed through Group Policy, Bypass prompting for Clipboard access for scripts running in any process, Bypass prompting for Clipboard access for scripts running in the Internet Explorer process, Define applications and processes that can access the Clipboard without prompting, Turn off the ability to launch report site problems using a menu option, Include updated website lists from Microsoft, Turn on Internet Explorer 7 Standards Mode, Turn on Internet Explorer Standards Mode for local intranet, Use Policy List of Internet Explorer 7 sites, Prevent specifying the code download path for each computer, Prevent access to Delete Browsing History, Prevent deleting ActiveX Filtering, Tracking Protection, and Do Not Track data, Prevent deleting InPrivate Filtering data, Prevent deleting temporary Internet files, Prevent deleting websites that the user has visited, Prevent the deletion of temporary Internet files and cookies, Allow active content from CDs to run on user machines, Allow Install On Demand (except Internet Explorer), Allow Install On Demand (Internet Explorer), Allow Internet Explorer to use the HTTP2 network protocol, Allow Internet Explorer to use the SPDY/3 network protocol, Allow software to run or install even if the signature is invalid, Automatically check for Internet Explorer updates, Check for signatures on downloaded programs, Do not allow ActiveX controls to run in Protected Mode when Enhanced Protected Mode is enabled, Do not allow resetting Internet Explorer settings, Empty Temporary Internet Files folder when browser is closed, Turn off loading websites and content in the background to optimize performance, Turn off sending UTF-8 query strings for URLs, Turn off the flip ahead with page prediction feature, Turn on 64-bit tab processes when running in Enhanced Protected Mode on 64-bit versions of Windows, Allow websites to store application caches on client computers, Allow websites to store indexed databases on client computers, Set application caches expiration time limit for individual domains, Set application cache storage limits for individual domains, Set indexed database storage limits for individual domains, Set maximum application cache individual resource size, Set maximum application cache resource list size, Set maximum application caches storage limit for all domains, Set maximum indexed database storage limit for all domains, Start Internet Explorer with tabs from last browsing session, Allow active content over restricted protocols to access my computer, Allow cut, copy or paste operations from the clipboard via script, Allow drag and drop or copy and paste files, Allow loading of XAML Browser Applications, Allow only approved domains to use ActiveX controls without prompt, Allow only approved domains to use the TDC ActiveX control, Allow OpenSearch queries in File Explorer, Allow previewing and custom thumbnails of OpenSearch query results in File Explorer, Allow script-initiated windows without size or position constraints, Allow scripting of Internet Explorer WebBrowser controls, Allow VBScript to run in Internet Explorer, Allow video and animation on a webpage that uses an older media player, Allow websites to open windows without status bar or Address bar, Allow websites to prompt for information by using scripted windows, Don't run antimalware programs against ActiveX controls. You must restart the VM after enabling the WDDM graphics display driver for the changes to take effect. * Right-click the current Graphics item in Device manager, and select "Update driver". [Computer Configuration->Policies->Windows Settings->Administrative Templates->Windows Components->Remote Desktop Services->Remote Desktop Session Host->Remote Session Environment], set the Policy [Use WDDM graphics display driver for Remote Desktop Connections] to Disabled. Prevent users from adding files to the root of their Users Files folder. Block launching Universal Windows apps with Windows Runtime API access from hosted content. Keep favorites in sync between Internet Explorer and Microsoft Edge, Prevent access to the about:flags page in Microsoft Edge, Prevent bypassing Windows Defender SmartScreen prompts for files, Prevent bypassing Windows Defender SmartScreen prompts for sites, Prevent changes to Favorites on Microsoft Edge, Prevent Microsoft Edge from gathering Live Tile information when pinning a site to Start, Prevent Microsoft Edge from starting and loading the Start and New Tab page at Windows startup and each time Microsoft Edge is closed, Prevent the First Run webpage from opening on Microsoft Edge, Prevent using Localhost IP address for WebRTC, Send all intranet sites to Internet Explorer 11, Show message when opening sites in Internet Explorer, Suppress the display of Edge Deprecation Notification, Allow companion device for secondary authentication, Microsoft Office 365 SharePoint Designer 2013, Ping the settings storage location before sync, Sync settings over metered connections even when roaming, Use User Experience Virtualization (UE-V), Prevent OneDrive files from syncing over metered connections, Prevent OneDrive from generating network traffic until the user signs in to OneDrive, Prevent the usage of OneDrive for file storage, Prevent the usage of OneDrive for file storage on Windows 8.1, Don't launch privacy settings experience on user logon, Make Parental Controls control panel visible on a Domain, Allow hibernate (S4) when starting from a Windows To Go workspace, Disallow standby sleep states (S1-S3) when starting from a Windows to Go workspace, Allow RDP redirection of other supported RemoteFX USB devices from this computer, Allow .rdp files from valid publishers and user's default .rdp settings, Configure server authentication for client, Do not allow hardware accelerated decoding, Prompt for credentials on the client computer, Specify SHA1 thumbprints of certificates representing trusted .rdp publishers, Do not use Remote Desktop Session Host server IP address when virtual IP address is not available, Select the network adapter to be used for Remote Desktop IP Virtualization, Turn off Windows Installer RDS Compatibility, Allow users to connect remotely by using Remote Desktop Services, Deny logoff of an administrator logged in to the console session, Restrict Remote Desktop Services users to a single Remote Desktop Services session, Set rules for remote control of Remote Desktop Services user sessions, Suspend user sign-in to complete app registration, Allow audio and video playback redirection, Do not allow smart card device redirection, Do not allow supported Plug and Play device redirection, Hide notifications about RD Licensing problems that affect the RD Session Host server, Use the specified Remote Desktop license servers, Do not set default client printer to be default printer in a session, Specify RD Session Host server fallback printer driver behavior, Use Remote Desktop Easy Print printer driver first, Limit the size of the entire roaming user profile cache, Set path for Remote Desktop Services Roaming User Profile, Set Remote Desktop Services User Home Directory, Use mandatory profiles on the RD Session Host server, Configure RD Connection Broker server name, Optimize visual experience for Remote Desktop Service Sessions, Optimize visual experience when using RemoteFX, Allow desktop composition for remote desktop sessions, Configure H.264/AVC hardware encoding for Remote Desktop Connections, Configure image quality for RemoteFX Adaptive Graphics, Enable RemoteFX encoding for RemoteFX clients designed for Windows Server 2008 R2 SP1, Enforce Removal of Remote Desktop Wallpaper, Prioritize H.264/AVC 444 graphics mode for Remote Desktop Connections, Remove "Disconnect" option from Shut Down dialog, Remove Windows Security item from Start menu, Use advanced RemoteFX graphics for RemoteApp, Use hardware graphics adapters for all Remote Desktop Services sessions, Use the hardware default graphics adapter for all Remote Desktop Services sessions, Use WDDM graphics display driver for Remote Desktop Connections, Always prompt for password upon connection, Do not allow local administrators to customize permissions, Require use of specific security layer for remote (RDP) connections, Require user authentication for remote connections by using Network Level Authentication, Server authentication certificate template, Set time limit for active but idle Remote Desktop Services sessions, Set time limit for active Remote Desktop Services sessions, Set time limit for logoff of RemoteApp sessions, Prevent automatic discovery of feeds and Web Slices, Prevent subscribing to or deleting a feed or a Web Slice, Turn off background synchronization for feeds and Web Slices, Turn on Basic feed authentication over HTTP, Force TIFF IFilter to perform OCR for every page in a TIFF document, Allow Cortana Page in OOBE on an AAD account, Always use automatic language detection when indexing content and properties, Don't search the web or display web results in Search, Don't search the web or display web results in Search over metered connections, Do not allow locations on removable drives to be added to libraries, Enable indexing of online delegate mailboxes, Enable indexing uncached Exchange folders, Enable throttling for online mail indexing, Prevent adding UNC locations to index from Control Panel, Prevent adding user-specified locations to the All Locations menu, Prevent automatically adding shared folders to the Windows Search index, Prevent clients from querying the index remotely, Prevent customization of indexed locations in Control Panel, Prevent indexing files in offline files cache, Prevent indexing Microsoft Office Outlook, Prevent indexing when running on battery power to conserve energy, Prevent the display of advanced indexing options for Windows Search in the Control Panel, Prevent unwanted iFilters and protocol handlers, Set large or small icon view in desktop search results, Stop indexing in the event of limited hard drive space, Turn on Security Center (Domain PCs only), Timeout for hung logon sessions during shutdown, Turn off legacy remote shutdown interface, Allow certificates with no extended key usage certificate attribute, Allow ECC certificates to be used for logon and authentication, Allow Integrated Unblock screen to be displayed at the time of logon, Display string when smart card is blocked, Force the reading of all certificates from the smart card, Notify user of successful smart card driver installation, Prevent plaintext PINs from being returned by Credential Manager, Reverse the subject name stored in a certificate when displaying, Turn on certificate propagation from smart card, Turn on root certificate propagation from smart card, Control Device Reactivation for Retail devices, Turn off KMS Client Online AVS Validation, Only display the private store within the Microsoft Store, Turn off Automatic Download and Install of updates, Turn off Automatic Download of updates on Win8 machines, Turn off the offer to update to the latest version of Windows, Do not allow printing to Journal Note Writer, For tablet pen input, don't show the Input Panel icon, For touch input, don't show the Input Panel icon, Include rarely used Chinese, Kanji, or Hanja characters, Turn off AutoComplete integration with Input Panel, Turn off password security in Input Panel, Turn off tolerant and Z-shaped scratch-out gestures, Hide Advanced Properties Checkbox in Add Scheduled Task Wizard, Allow uninstallation of language features when a language is uninstalled, Prohibit installing or uninstalling color profiles, Allow Corporate redirection of Customer Experience Improvement uploads, Tag Windows Customer Experience Improvement data with Study Identifier, Configure Corporate Windows Error Reporting, List of applications to always report errors for, List of applications to never report errors for, Automatically send memory dumps for OS-generated error reports, Prevent display of the user interface for critical errors, Send additional data when on battery power, Send data when on connected to a restricted/costed network, Enables or disables Windows Game Recording and Broadcasting, Allow enumeration of emulated smart card for all users, Use certificate for on-premises authentication, Use cloud trust for on-premises authentication, Use Windows Hello for Business certificates as smart card certificates, Allow suggested apps in Windows Ink Workspace, Allow users to browse for source while elevated, Allow users to use media source while elevated, Control maximum size of baseline file cache, Prevent Internet Explorer security prompt for Windows Installer scripts, Prevent users from using Windows Installer to install updates and upgrades, Prohibit non-administrators from applying vendor signed updates, Save copies of transform files in a secure location on workstation, Specify the types of events Windows Installer records in its transaction log, Turn off creation of System Restore checkpoints, Configure the mode of automatically signing in and locking last interactive user after a restart or cold boot, Disable or enable software Secure Attention Sequence, Display information about previous logons during user logon, Report when logon server was not available during user logon, Sign-in and lock last interactive user automatically after a restart, Prevent Windows Media DRM Internet Access, Prevent Quick Launch Toolbar Shortcut Creation, Do not automatically start Windows Messenger initially, Set the default source path for Update-Help, Allow remote server management through WinRM, Disallow WinRM from storing RunAs credentials, Specify channel binding token hardening level, Specify maximum amount of memory in MB per Shell, Specify maximum number of processes per Shell, Specify maximum number of remote shells per user, Hide the Device performance and health area, Hide the Security processor (TPM) troubleshooter page.