Quick Answer
The 30-second version
Sign out cleanly when you're done (not just close the window). Use a long unique password, never reuse it elsewhere, and never put your IP or login details in screenshots. If anything ever looks off, change your password and tell support.
Most Common Mistake
Sign out vs disconnect — what's the difference?
Closing the RDP window doesn't sign you out. Your session keeps running on the remote PC, with whatever apps and tabs were open.
Sign out
End of work day, finished with the session
Closes all running apps and clears your Windows session. The next login starts fresh. Best for security.
Disconnect
Quick break, will be back in minutes
Closes the window but leaves apps running on the remote PC. Anyone with your credentials can resume the session as-is.
Rule of thumb:if you're walking away for more than an hour, sign out. If you're popping out for a coffee, disconnect is fine.
The Six Habits
Build these into your routine
Sign out — don't just close the window
Use Start → User icon → Sign out. Closing the RDP window only disconnects; your session keeps running with apps and files open.
Use a unique password
Never reuse your RDP password for email, banking, or other services. If one site leaks, attackers will try the same password on your RDP.
Don't share your account
Each person should have their own RDP. Shared logins make it impossible to track who did what and who leaked credentials.
Don't post screenshots with details visible
Crop or blur the title bar, IP, and any open credential window before sharing screenshots in chats, forums, or social media.
Keep Windows updated
Run Windows Update inside your RDP every couple of weeks. Most attacks target unpatched systems, not strong ones.
Tell support about anything weird
Unfamiliar logins, files you didn't create, or browser sessions you didn't start — open a ticket and we'll help investigate.
Cheat Sheet
Do this — never that
Do
- Sign out cleanly when you're done — not just close the window.
- Change your password every few months and after any suspicious activity.
- Use a password manager so you can keep long, unique passwords.
- Keep your delivery email private and don't forward it.
- Run Windows Update on the remote PC regularly.
Don't
- Don't reuse the RDP password anywhere else, ever.
- Don't save credentials on shared or public computers.
- Don't share your IP, username, or password in screenshots or chats.
- Don't ignore unexpected 'failed login' notifications.
- Don't install software from untrusted sources inside the remote PC.
When To Worry
Three signs to act on immediately
If any of these happen, change your password and contact support the same day.
Repeated 'wrong password' notices on login
Could mean someone is trying to guess your password. Change it immediately and contact support to review activity.
New files, browsers logged in, or settings changed
If anything looks off when you reconnect, sign out, change the password, and tell us. Don't keep working on a possibly compromised session.
You shared the password by accident
Even by mistake — change it right away from inside the RDP (Ctrl + Alt + End). Anyone who saw it has the keys.
