I’m trying to provide 2FA to a small subet of users to specific computers using RDG but found that all connection and authorization policies are no longer available if using Duo for RDG. So I attempted to install the DuoProxy and direct attempts from RDG to the DuoProxy for 2FA, so I could continue to use RAPs and CAPs in RDG. I’ve had some success but am getting an odd error message about “none objects can be quoted” when the proxy forwards the authentication info that it receives from the RDG to Duo.
I could not find any documentation around either further scoping the users and resources in RDG when using Duo, nor any about forwarding RDG NPS auth requests from RDG to Duo, then back to RDG for connection. Is there any guidance around these scenarios?