RDS Gateway - Logon to any computer?


#1

Hi folks,
Without Duo Security plugin installed on my RDS gateway, I configured policies to allow specific users group to connect specifics computers (RDS hosts).
Now that I installed Duo security, theses options disappeared and any computer is reachable… Of course for any duo authentified user, but…

I didn’t find this issue in the knowledge base, is there a way to conciliate “rds gateway policies” and “duo security policies” ?


#2

Ok, I found the answer in the faq : FAQ - Two-Factor Authentication for Microsoft Remote Desktop Services | Duo Security
It’s by design,

However, this behaviour is quite bothersome. If I can understand the “user authentification is handled by Duo”, the “which computers can rds gateway access” should be still available.
I’ll work around with firewall rules.