Enterprise Connect

Remote Desktop Windows Login

To enable MFA for a remote desktop login (RDP), the following additional configurations are required.

Editing the remote desktop script

Edits are required to the RDP script.

Edit RDP script
  1. Launch a Remote Desktop Connection.

  2. Select the remote computer and click Show Options.

  3. Under Connection Settings, click Save As and save the RDP script.

    Remote desktop script update
  4. Add the following line to the end of the script:

    enablecredsspsupport:i:0

    To open the RDP file in a text editor, you must first open the text editor and then open up the RDP file from there. If you select the RDP file directly in Windows, it will attempt to run the RDP application.

  5. Save the script.

Configuring Windows system properties

System protection settings need to be in place for the remote desktop.

Configure system protection settings
  1. Log into the relevant remote desktop Windows machine.

  2. Go to Control Panel > System and Security > System.

  3. Click Remote settings.

  4. Under Remote Desktop:

    • Select the Allow remote connections to this computer radio button.

    • Verify that the Allow connections only from computers running Remote Desktop with Network Level Authentication checkbox is NOT selected.

  5. Click Apply.

Remote desktop system protection settings

Administrative privileges are required to perform this action.

Copyright © 2010-2022 ForgeRock, all rights reserved.