Forum Discussion
Remote Dekstop Connection using Azure MFA
I've found the NPS extension to work great at MFA-protecting all NPS requests. In addition to all RDP connections, we even have our cisco firewall and switches logins (RADIUS auth to the NPS server) protected with Azure AD+MFA now.
One key thing that I struggled with early on was trying to have the MFA NPS extension installed on the same server as the RDG (RD Gateway) server. Need to have RDG on its own server, and NPS w/ the extension on its own server, otherwise there are unresolvable auth issues that occur.
PrestonMQuestion looking through the document from itnetowrks.com below. It suggests that the NPS run on an AD Server. have you seen anything to suggest that to be nessasary? I have our NPS on its own we have been using for Wireless and was thinking of implementing MFA for RDP, for the same server. Also, do you see any reason I could not use our NPS servers at our other sites the same way for wireless and MFA?
https://www.itnetworks.com.au/how-to-configure-mfa-for-rds/
PrestonMI can confirm I got this working today with NPS Extension - setup was straight forward. Thank you all for the support.
mrktos does the Azure MFA with RDS work with SMS messages and phone calls
if so can you share any pick of how it looks
thanks
Dear Bhavnash ,
It works with Microsoft Authenticator App installed on your smartphone.
You will receive an approval popup each time to try to access a computer via RDS (published desktop or via the Microsoft Remote Desktop Connection tool with RD Gateway settings).
You will just need to select "approve" on your smartphone, then type your Microsoft Authenticator App code to open it.
Cheers,
