Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2588
Views
0
Helpful
0
Replies

Duo with RD Gateway - what to do about security without CAP/RAP?

Justin_Allen
Level 1
Level 1

‎11-01-2017 10:05 AM

We’re evaluating using Duo for our RD Gateway service, but I’m having a hard time with giving up our RAPs and CAPs. We use them extensively to lockdown our remote users.

What are people doing without them? Simply relying on the user in question not being in other computers Remote Desktop Users group? I would not like an attacker to have full access to our domain with one compromised phone/credential. It almost seems to me that a RAP/CAP is more safe for the greater good of the domain (while less safe for the individual PC, admittedly) than Duo + No-RAP/CAP.

Hopefully I am missing something very obvious!

Labels:
0 Helpful
0 Replies 0
Quick Links
     
                  Duo Release Notes   Duo Discussion Forums      
 
 
Customers Also Viewed These Support Documents