Hi..
We want to use our Fortiauthenticator to provide 2FA with a Windows RDS gateway (2012). I cannot find any documentation on this so i was hoping someone else has figured this out..
I think i have to use the fortiauthenticator plugin for IIS/OWA, but how can i configure this plugin for the RDS Gateway ?
and is it even posible ?
Regards, Alex
Alex Wassink
NSE4,5,7,8 CCNP, ACMP, VCP6-NV
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Just to make sure we are on the same ground I will describe the setup I have now. We have RD web access that leads to RD gateway. The user is authenticated using windows credentials on the RD web access login page ( I couldn't find a way to change this to NPS), after authentication the user is presented by the RD applications and once the user clicks on any of the applications (for example calc) an authentication window pop up which as per the configuration I have on the NPS is forwarded to the Fortiauthenticator.
After following debug on Fortiauthenticator I found that the authentication request doesn't have "User-Password" field and Fortiauthenticator rejects the request because of this.
You have mentioned in your message to Benji that you have installed Fortiauthenticator agent on RDP servers to enable token authentication, can you elaborate more on this? Do you think this can apply to my setup also?
Best Regards,
Ahmed
Locian wrote:Just to make sure we are on the same ground I will describe the setup I have now. We have RD web access that leads to RD gateway. The user is authenticated using windows credentials on the RD web access login page ( I couldn't find a way to change this to NPS), after authentication the user is presented by the RD applications and once the user clicks on any of the applications (for example calc) an authentication window pop up which as per the configuration I have on the NPS is forwarded to the Fortiauthenticator.
After following debug on Fortiauthenticator I found that the authentication request doesn't have "User-Password" field and Fortiauthenticator rejects the request because of this.
You have mentioned in your message to Benji that you have installed Fortiauthenticator agent on RDP servers to enable token authentication, can you elaborate more on this? Do you think this can apply to my setup also?
Best Regards,
Ahmed
Did you ever get this working? I have exactly the same problem where the password is missing (according to the debug)
Unfortunately no, after investigating this with Fortinet the final replay was that this is not supported now.
I am also looking for this solution. However as usual it is very hard to find anyone else that has set it up!
We are looking at the same thing. Were you able to do this without VPN or some type of proxy for the Auth?
Thanks-Jeff
Does anyone know if this feature request (FAC with RDS Gateway) has been released?
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1712 | |
1093 | |
752 | |
447 | |
231 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.