Duo For RDP | Azure Active Directory/Microsoft Entra ID Joined RDP

tshabbircisco · ‎03-21-2024

Hi Support,

We are Duo customer with 50 users. Its working perfectly for RDP On Prem and Azure as well.

However, its not working with RDP which Microsoft Entra ID Joined computer. When i try to login with local user we got Duo prompt and able to logon but when logged with Azure Domain account, after authentication get this error.

The username you have entered is not enrolled with Duo Security. Please contact your system administrator.

However, user is already added in Duo Admin users list. please advise the solution.

Pulkit Mittal · ‎03-21-2024

Hi There,

Is the user synced in duo user list? Admin list of users is different from enrolled users who can use MFA on protected applications.

Duo Administration - Manage Users | Duo Security

If you find this useful, please mark it helpful and accept the solution.

tshabbircisco · ‎03-22-2024

Hi,

Yes, the user is in the Duo user list. Status is active and authenticated successfully with office365 as well.

DuoKristina · ‎03-22-2024

If you have already verified that the Entra domain username exists in your Duo account as an end-user's username or alias read on.

There are also some known issues with the username sent to Duo by Duo Windows Logon when the workstation is joined to Entra. Duo for Windows Logon 4.3.0 adds the ParseUsernameAndDomain to send the right username. Please give it a try using the instructions here: Why might an incorrect username get sent to Duo from a machine joined to Entra ID?

Duo, not DUO.