Remote Desktop Double Login

Andy_TCTAndy_TCT
in AuthPoint - General

Hi

We have users connecting to Remote Desktop using MSTSC (RDP) shortcuts not RD Web as these are all internal PC's. We have the logon app on the RD Hosts which works fine.

However, when running mstsc the user logs in with the RD client and they now go to the Windows login screen where they have to login again before getting the MFA challenge.

Has anyone found a way around this so users just have to enter their credentials once?

Thanks

Andy.

Comments

  • james.carsonjames.carson Moderator, WatchGuard Representative

    Hi @Andy_TCT
    The initial logon requirement (via MSTSC) is for NLA, which isn't able to interact with AtuhPoint at all.

    -Turning off the NLA requirement and allowing the RDP client to use Windows Authentication would bypass needing to login twice, however turning off NLA is generally considered to be bad security practice.

    -If you use the logon app, AuthPoint must go through the interactive login process, which requires authentication. This is why you're seeing the logon prompt the second time. Without doing this, AuthPoint can't verify you since it wasn't part of the login process the terminal services client did.

    -James Carson
    WatchGuard Customer Support

Sign In to comment.