RDS-Knight On-line User Guide



For information about RDS-Knight System Audit and Database, see these documentations:
System Audit and RDS-Knight Database.

Users Whitelist

The Users Whitelist tab gives the Administrator the possibility to add/remove users from the whitelist.
Users on the whitelist are ignored by RDS-Knight and their settings will not be applied.

The user who downloaded RDS-Knight is automatically added to the Whitelist:

Settings 1


On the Programs tab, you can add programs to the list of allowed programs, that won't be checked by RDS-Knight Ransomware Protection.

Settings 2

Click on the "Add Application" button to add a program. You can also remove them by selecting application(s) and clicking on the Remove Application(s) button.


On the Advanced tab, you can configure RDS-Knight settings.

You can Backup or Restore RDS-Knight data and settings by clicking on the button "Backup/Restore" on the top:

Settings 3

Settings 4

Please follow the steps below to migrate RDS-Knight from computer A to computer B:

  1. On computer A, please click on the Backup button to create a new backup. Settings and data will be saved in the archives directory, located in RDS-Knight setup directory (typically C:\Program Files (x86)\RDS-Tools\RDS-Knight\archives).
  2. Copy the newly created backup folder (e.g. named backup-2019-09-11_14-37-31), including all content, from the archives directory on computer A to the archives directory on computer B.
  3. On computer B, from the Backup / Restore window, in the "Restore" section, select the relevant backup name to be restored.
  4. Then, click on Restore Settings Only to restore the settings. Alternatively, it is possible to click on Restore to restore all data and settings, which is not recommended for a migration but useful to restore RDS-Knight on computer A.
  5. Please wait at most 2 minutes for the settings to be reloaded by RDS-Knight features.

  • The Product tab allows you to add a PIN code to the Administration Tool:

Settings 5

Settings 6

Click on Save. The PIN code will be required the next time you will start the Administration tool.

You can also contribute to improve the product, by sending anonymous data (enabled by default):

Settings 5

The following data will be collected in case of a Ransomware attack:

  • RDS-Knight Version.
  • Windows Version.
  • Suspected files'paths that lead to the ransomware attack.

  • The Homeland tab allows you to add or remove Processes that are watched by the Homeland Protection feature.

Settings 7

Settings 8

By default, the HTML5 service is watched.

  • The Bruteforce tab allows you to ignore Local and Private Ip Addresses if you wish to, by changing the default value from "No" to "Yes".

Settings 9

Settings 10

  • The Working Hours tab allows you to schedule and modify a warning message before the user is logged off.

Settings 11

You can configure the warning message schedule in number of minutes before the user is automatically disconnected. By default, it is set to 5 minutes.

Settings 12

Modify the Warning message at your convenience, with placeholders named %MINUTESBEFORELOGOFF%, %DAY%, %STARTINGHOURS% and %ENDINGHOURS%, which will be respectively replaced by the current number of minutes before the session closes, the current day, the current day's starting and ending working hours.

Settings 13.

  • The Endpoints tab allows you to enable connections from the Web Portal for Endpoints Protection users.

Settings 14

RDS-Knight Endpoint Protection cannot resolve the client name if the connection is initiated from the Web portal. Therefore, Endpoint Protection will block any connections from Web Portal by default. Set this setting to "Yes" to allow connections from the Web portal. Please note that this action will diminish your server's security.

Settings 15

  • The Logs tab allows you to enable or disable service and functionalities logs. Logs exist to find more easily the origin of the errors encountered on RDS-Knight.

Settings 16

Enable or disable RDS-Knight service and application logs, which are respectively the global configuration service that runs in the background and the log for the Application interface.

You can also enable logs corresponding to the respective RDS-Knight features : Bruteforce Protection, Homeland and Ransomware protection services logs. They are disabled by default.

Logs correspond to different components, our support team will tell you what value to put according to the problem encountered.


Since version 4.3, a database stores Events, IP addresses, Ransomware attacks reports and programs whitelists. This database is stored in .\data and this is a LiteDB DataBase:

Settings 17