When configuring WFP Driver to start at BOOT_START or SERVICE_SYSTEM_START, then unable to enable Remote Desktop. It is confusing because I am not blocking it in my driver. But if I configure the driver to start at SERVICE_AUTO_START or DEMAND_START then everything works fine.
If you stop your driver can you RDP again? Or is it “sticky” and RDP won’t work even after you unload?
Yep, It doesn't work after unload. have to remove the driver and restart for rdp to work normally.
Absent anything obvious in your own logging or in whatever RDP logs are available, I’d honestly just start by disabling parts of my driver until it went away and then working from there. Sometimes brute force is the path of least resistance.