Use smart card with rdweb access

olivier-rb 91 Reputation points
2020-10-24T15:39:40.383+00:00

hi

it s possible to use a smart card (piv yubikey) to connect rdweb like rdp.

thank you
br

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
12,186 questions
0 comments

4 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Eleven Yu (Shanghai Wicresoft Co,.Ltd.) 10,691 Reputation points Microsoft Vendor
    2020-10-26T05:12:32.55+00:00

    Hi,

    Please check if below two possible solutions work for you.

    1. Choose Logon method as Smart Card Authentication under deployment properties-->RD Gateway
      34925-image.png Meanwhile, please ensure that Smart Card redirection in session host isn't disabled.
      Computer Configuration >> Administrative Templates >> Windows Components >> Remote desktop service>> Remote desktop session host>> Device and
      Resource redirection       - Do not allow smart card redirection.
    2. Open the IIS manager MMC on the server hosting RDWeb>under connections in the left pane go to sites>Default web site>RDweb>Pages>Application Settings>
      use GatewayCredentialsSource to configure the authentication method
      options:
      0 = Ask for password (NTLM)
      1 = Smart card
      4 = Allow user to select later 34828-image.png

    Thanks,
    Eleven

    ----------

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    0 comments
  2. olivier-rb 91 Reputation points
    2020-10-26T09:13:12.943+00:00

    Hello,
    thank you for the answer but I misspoke.
    it is the authentication on the web page where I would like to have the smart card or mfa without third party software.

    thank you

  3. olivier-rb 91 Reputation points
    2020-10-27T10:09:35.413+00:00

    35358-web.png

    0 comments
  4. Eleven Yu (Shanghai Wicresoft Co,.Ltd.) 10,691 Reputation points Microsoft Vendor
    2020-10-28T07:56:18.9+00:00

    Hi,

    Thanks for your reply. Understand your requirement now.

    Unfortunatelty, there is no such configuration to let use smart card to logon to the RD Web access page. But after your sign in, you can use smart card for authentication to open remoteapp on the web page by above 2 provided configurations.

    In that case, we suggest that that you could post your requirement to Remote Desktop UserVoice so that others can vote for it. Hope the feature can be released in the future.
    https://remotedesktop.uservoice.com/forums/266795-remote-desktop-services

    Thanks,

    Eleven

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    0 comments