For maximum security, Workspot Clients will soon require that RDP endpoints (RD Gateways, Workspot desktops, RD pools, and RDP app servers) support SSL/TLS transport and Network-Level Authentication (NLA). This will take effect in Workspot Windows Client 3.7, Workspot Mac Client 3.7, and other Workspot Clients to follow.
These settings are the defaults in Microsoft Windows 10 and Windows Server 2012, so most deployments will be unaffected by this change.
Your Workspot desktops and app servers should be set to Microsoft-recommended RDP connection values, which are also the defaults In supported versions of Microsoft Windows 10 and Microsoft Windows Server. These are:
Security Layer: The default (and recommended) value for "Require use of specific security layer for remote (RDP) connections" is "SSL (TLS)."
The "Negotiate" and "RDP" methods are no longer recommended.
This setting is under "Local Computer Policy > Computer Configuration > Administrative Templates > Windows Components > Remote Desktop Services > Remote Desktop Session Host > Security."
System Properties: The "Allow connections only from computers running Remote Desktop with Network Level Authentication (recommended)" box should be checked. This is the default.
This setting is under "Control Panel > System > System > Remote settings > Remote" (with some minor variations depending on OS version and release).