Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1404
Views
2
Helpful
3
Replies

Protect Remote Desktop GATEWAY (only) - not RDP Servers

Alexander_Schoeggl
Level 1
Level 1

‎11-19-2020 11:03 PM

Hi,
i could not find an article describing what im asked to do.
if there is a microsoft remote desktop server with the gateway service installed - is there a way to 2FA only connections using the gateway, but not ‘local rdp’ connections ?

Labels:
3 Replies 3

DuoKristina
Cisco Employee
Cisco Employee

‎11-20-2020 06:03 AM

Have you already read this?

Duo, not DUO.

Alexander_Schoeggl
Level 1
Level 1

‎11-23-2020 02:55 AM

Hello, thank you Kristina - no i have not, but now i did. (“protect an application” -> “rd gateway” ‘documentation’ redirects to Duo 2FA for Microsoft Remote Desktop Services | Duo Security )
So it is possible to use DUO for external (gateway) connections, but only regular logon for internal RDP sessions ?

0 Helpful

adam.palmer
Level 1
Level 1
In response to Alexander_Schoeggl

‎11-24-2020 04:35 AM

There are separate apps for RD Gateway, RDWeb, and RDP. Note: if RDWeb is installed on you Gateway or otherwise publicly accessible you should install the RDWeb protection on that server too. The RDP app protection is for RDP logins to a specific server and optionally to protect console logins too.

If you only install the RD Gateway app protection on your RD Gateway then only the Gateway will prompt for MFA. The Session Hosts will not (unless you also install the RDP app protection)

0 Helpful
Quick Links
     
                  Duo Release Notes   Duo Discussion Forums      
 
 
Customers Also Viewed These Support Documents