| Switch | Description | | :--- | :--- | | /v:<server>[:port] | Specifies the remote computer (IP address or hostname) and optionally the port (default is 3389). | | /admin | Connects to the session for administrative purposes. This is crucial for Windows Server versions (e.g., 2008 R2 and later) to bypass the Remote Desktop Session Host (RDSH) licensing requirements and connect to the console session (Session 0). | | /f | Starts Remote Desktop in full-screen mode. | | /w:<width> /h:<height> | Specifies the dimensions of the remote desktop window. | | /public | Runs Remote Desktop in public mode. This prevents the client from saving passwords, bitmaps, or user credentials to the local cache, ideal for kiosks or shared computers. | | /span | Spans the remote desktop session across multiple monitors (requires monitors to have the same resolution and be arranged side-by-side). | | /multimon | Configures the Remote Desktop session monitor layout to be identical to the current client-side configuration (more advanced than /span ). | | /edit <file> | Opens the specified .rdp configuration file for editing. | | /migrate | Migrates legacy connection files created with Client Connection Manager to new .rdp files. | | /restrictedAdmin | Connects in Restricted Admin mode. This prevents the client from sending credentials (passwords/Smartcard PINs) to the remote host, protecting against credential theft if the remote host is compromised. | | /remoteGuard | Connects using Remote Credential Guard. This provides a higher level of security than Restricted Admin mode by redirecting Kerberos requests back to the client. |
mstsc is not glamorous. It has no sleek web interface, no AI-powered features, no freemium pricing model. It is a gray dialog box from the early 2000s, invoked by a four-letter command that feels archaic in an era of PowerShell and REST APIs. Yet that very simplicity is its strength. For nearly three decades, mstsc has provided a reliable, efficient, and secure (when properly configured) method for humans to reach Windows machines across the world.
In an industry obsessed with deprecation and reinvention, mstsc stands as a rare artifact—a tool that has been continuously improved without losing its core identity. It has weathered security storms, adapted to cloud architectures, and embraced new authentication models while remaining instantly recognizable to any Windows administrator. When a server crashes in a data center at 2 AM, when a remote employee cannot access their files, when a developer needs to test an application on a clean Windows environment—the answer is often the same: Win+R, type mstsc , press Enter. The gateway opens. The work continues.
Mstsc !!top!!
| Switch | Description | | :--- | :--- | | /v:<server>[:port] | Specifies the remote computer (IP address or hostname) and optionally the port (default is 3389). | | /admin | Connects to the session for administrative purposes. This is crucial for Windows Server versions (e.g., 2008 R2 and later) to bypass the Remote Desktop Session Host (RDSH) licensing requirements and connect to the console session (Session 0). | | /f | Starts Remote Desktop in full-screen mode. | | /w:<width> /h:<height> | Specifies the dimensions of the remote desktop window. | | /public | Runs Remote Desktop in public mode. This prevents the client from saving passwords, bitmaps, or user credentials to the local cache, ideal for kiosks or shared computers. | | /span | Spans the remote desktop session across multiple monitors (requires monitors to have the same resolution and be arranged side-by-side). | | /multimon | Configures the Remote Desktop session monitor layout to be identical to the current client-side configuration (more advanced than /span ). | | /edit <file> | Opens the specified .rdp configuration file for editing. | | /migrate | Migrates legacy connection files created with Client Connection Manager to new .rdp files. | | /restrictedAdmin | Connects in Restricted Admin mode. This prevents the client from sending credentials (passwords/Smartcard PINs) to the remote host, protecting against credential theft if the remote host is compromised. | | /remoteGuard | Connects using Remote Credential Guard. This provides a higher level of security than Restricted Admin mode by redirecting Kerberos requests back to the client. |
mstsc is not glamorous. It has no sleek web interface, no AI-powered features, no freemium pricing model. It is a gray dialog box from the early 2000s, invoked by a four-letter command that feels archaic in an era of PowerShell and REST APIs. Yet that very simplicity is its strength. For nearly three decades, mstsc has provided a reliable, efficient, and secure (when properly configured) method for humans to reach Windows machines across the world. | Switch | Description | | :--- |
In an industry obsessed with deprecation and reinvention, mstsc stands as a rare artifact—a tool that has been continuously improved without losing its core identity. It has weathered security storms, adapted to cloud architectures, and embraced new authentication models while remaining instantly recognizable to any Windows administrator. When a server crashes in a data center at 2 AM, when a remote employee cannot access their files, when a developer needs to test an application on a clean Windows environment—the answer is often the same: Win+R, type mstsc , press Enter. The gateway opens. The work continues. | | /f | Starts Remote Desktop in full-screen mode