cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED

Basic auth / redirect clipboard without drives / controlling logout timings of subscription

Melmix
Copper Contributor

‎Oct 30 2020 09:53 PM - edited ‎Oct 30 2020 10:09 PM

‎Oct 30 2020 09:53 PM - edited ‎Oct 30 2020 10:09 PM

Basic auth / redirect clipboard without drives / controlling logout timings of subscription

Hello. I'm new to WVD. I have a few questions I hope you can help me with :smile:

 

  1. We subscribe to the applications in Remote Desktop with modern authentication. But then when we start the first application everytime we get this (please see attached image). We can say remember my credentials, which makes it go away, but is it really normal for this oldschool prompt to show up in the first place?

  2. When we redirect clipboard and disable the redirection of drives, it still redirects drives. We must disable clipboard redirection to not get the drives. We had a consultant which tried it in his demo environment and got the same behaviour. Is this really expected? Ideally, we want to be able to copy/paste text and nothing else. Is this possible?

  3. How do we control the logout timings of the Remote Desktop client? It seems that if we have a user log in (subscribe) and they leave their computer on they almost never have to login to that subscription again? Ideally we want it to require modern authentication with MFA daily.

Thank you so much! :smile:

Labels:
Preview file
10 KB
1,789 Views
0 Likes
3 Replies
Reply
3 Replies
best response confirmed by Melmix (Copper Contributor)
David Belanger

‎Nov 02 2020 11:15 AM

‎Nov 02 2020 11:15 AM

Solution

Re: Basic auth / redirect clipboard without drives / controlling logout timings of subscription

@Melmix For your first question, yes that is expected today as it's prompting for standard Active Directory credentials to sign in to the remote VM. This is similar to doing a manual RDP connecting to a remote system. We are working on functionality to improve this like supporting SSO using AD FS and eventually supporting AADJ VMs.

 

For the second question, this isn't expected. You should be able to disable drive redirection and leave clipboard redirection on. How are you disabling drive redirection?

 

For the prompting for MFA again on a daily basis, you can currently use the Sign In Frequency in AAD. Information can be found here: https://docs.microsoft.com/en-us/azure/virtual-desktop/set-up-mfa

 

1 Like
Reply
Melmix

‎Nov 02 2020 10:24 PM - edited ‎Nov 02 2020 10:27 PM

‎Nov 02 2020 10:24 PM - edited ‎Nov 02 2020 10:27 PM

Re: Basic auth / redirect clipboard without drives / controlling logout timings of subscription

@David Belanger thank you for your response. Regarding the second question, I have attached a screenshot (pic2.png) of the setting. I also tried some stuff in Advanced RDP Properties, but with no effect. When I change something in the Device redirection tab it automatically reflects in the Advanced RDP Properties. It currently shows like pic3.png.

Preview file
51 KB
Preview file
125 KB
0 Likes
Reply
tilikumtim

‎Nov 03 2020 01:04 AM - edited ‎Nov 03 2020 01:05 AM

‎Nov 03 2020 01:04 AM - edited ‎Nov 03 2020 01:05 AM

Re: Basic auth / redirect clipboard without drives / controlling logout timings of subscription

Not sure why the 'Don't redirect any drives' option doesn't work, but try changing the advanced properties to drivestoreredirect:0 or in the GUI option, change to manually enter drive letters and enter 0.

0 Likes
Reply
1 best response

Accepted Solutions
best response confirmed by Melmix (Copper Contributor)
David Belanger

‎Nov 02 2020 11:15 AM

‎Nov 02 2020 11:15 AM

Solution

Re: Basic auth / redirect clipboard without drives / controlling logout timings of subscription

@Melmix For your first question, yes that is expected today as it's prompting for standard Active Directory credentials to sign in to the remote VM. This is similar to doing a manual RDP connecting to a remote system. We are working on functionality to improve this like supporting SSO using AD FS and eventually supporting AADJ VMs.

 

For the second question, this isn't expected. You should be able to disable drive redirection and leave clipboard redirection on. How are you disabling drive redirection?

 

For the prompting for MFA again on a daily basis, you can currently use the Sign In Frequency in AAD. Information can be found here: https://docs.microsoft.com/en-us/azure/virtual-desktop/set-up-mfa

 

View solution in original post

1 Like
Reply