Good evening, we are looking into ways to meet a couple NIST standards and we need to apply multi factor authentication to our VPN and A/D login. Of course it would be nice if we could use the same tool for both.
My questions are:
Is a single Duo setup capable of handling both MFA with OpenVPN and MFA on Active Directory local PC logins?
Is there any change in the licensing if using it for multiple applications?
How would it handle it the authentication in this scenario, as far as would they be prompted both times - once at VPN entry and once at A/D (assuming remote desktop) or would the first session carry over?
This is our first adventure into this and we are behind the curve on experience and time, so we appreciate the help.