Jul 24 2018 07:29 AM
In the release notes for build 17713, support was announced for logging into remote desktop sessions using biometrics via windows hello. I have a few questions I'm hoping someone can answer:
The way the blog post is worded, it's not clear whether the 'new' part of this is strictly related to biometrics, or if using Windows Hello to log into a remote desktop server is completely new. Was it previously possible to use Windows Hello with a PIN to log in to a remote desktop session? If so, is there any documentation on this available?
In the example used in the blog post, the Remote Desktop connection is from a Windows 10 client to a Windows Server 2016 server. Is Server 2016 required, or will this work with older server OS versions?
Does it matter which type of deployment (Key-Trust vs Certificate-Trust) is used for Windows Hello for business?
I've tried using this feature in my environment, to connect from a client running build 17713 to a Server 2016 server, but get an error "The client certificate does not contain a valid UPN. . . " (screenshot below)
Any idea what would cause that?
Have any Insiders out there been able to use this new feature successfully?
Feb 10 2022 10:21 PM
Feb 11 2022 05:59 AM
Jun 10 2022 03:28 AM
Nov 01 2022 10:02 PM
@Clint Lechner all went well till I hit this command
certutil -dstemplate \<TemplateName\> \> \<TemplateName\>.txt
Can't make heads or tail of what to leave or remove so if my template is called
"authenticationCertificate" how would this code above be formatted?
Nov 01 2022 10:27 PM
I think they overcomplicated it.
certutil -dstemplate "authenticationCertificate" > "Output.txt"
note, "authenticationCertificate" is the name of the template within your CA. Output.txt is simply a text file that gets created in the same directory you're running that command.
Nov 02 2022 06:16 AM
@Clint Lechner That was totally it and worked perfectly I was even able to import with no errors.
thank you very much
Feb 01 2023 11:06 AM
Feb 18 2023 06:14 AM
@Jeroen_Gielen I'd be interested if you find a solution to this. Just rolled out Cloud Kerberos Trust and having the same issue with RDP and WHfB
Jun 28 2023 09:41 AM
Jun 28 2023 09:42 AM