I know the 3 levels of protection that Duo offers for protecting and RDP farm. But has anyone worked out a less annoying process than any of these options I see? I want to eliminate the VPN.
- Being double prompted when connecting through RD Web (Duo on RD Web, Gateway)
- Allowing public web traffic to authenticate without MFA (Only protecting RD Gateway)
- Allowing public traffic to bypass MFA with and RDP client (Only protecting the RD Web)
- Allowing all sorts of public traffic to bypass MFA (Only using RDP DUO client)
I was really hoping there was a solution with the DNG, but support tells me there’s not.
Anyone found a cool way of doing things that I didn’t list above?