Reference Guide
Multi-Factor Authentication

Using MFA for RDP Connections

To activate MFA for an RDP connection to a target device:

  1. Pre-requisite: Admin and users have the QR code, installed the Kron PAM mobile app, scanned the QR code with the mobile app, and OTP is enabled for the user group that will be using MFA for RDP connections (See sections Sending the MFA QR Code to Users, Creating a Connection Between Kron PAM and the Kron PAM Mobile Application, Enabling Multi-Factor Authentication (MFA)
  2. Log in to the Kron PAM Web GUI.
  3. Navigate to Administration > System Configuration Manager.
  4. Set these required parameters: sc.rdp.connection.otp.enabled=true (one-time-password enabled for RDP connections) sc.rdp.otp.cache.enabled=true (If the cache parameter is activated, after entering an MFA the user will not be asked for OTP during the cache duration) sc.rdp.otp.cache.seconds=240 (cache time in seconds)
  5. After these settings, a user belonging to an enabled user group will be asked for a token when logging in to an RDP server.
Using MFA to Establish an RDP Connection
Using MFA to Establish an RDP Connection




PREVIOUS
Using MFA for SSH Connections
NEXT
Using MFA for SSH Proxy
Docs powered by Archbee