2.5.2.4 Redirect Smart Card Data from an RDP Client--Remote Application

Goal

For the remote application to access a smart card on the RDP client.

Context of Use

After an RDP client establishes a connection to an RD Session Host server, a remote application running on the RD Session Host server can access local drives on the RDP client.

Actors

Remote application: The primary actor is the remote application. It is an application running on the remote machine.

RDP client: The RDP client redirects smart card data to the remote application.

RD Session Host: The RD Session Host is hosting the remote desktop or remote application to which the direct actor is connecting. The RD Session Host manages redirecting smart card data from the RDP client to the remote application.

Stakeholders

Smart Card: The smart card is accessible to the remote application or remote desktop after the RDP connection is established.

Preconditions

The RDP client is connected to the RD Session Host server. The RDP connection supports smart card redirection. The remote desktop or remote application is running on the RD Session Host.

Main Success Scenario

  1. Trigger: The remote application requests the remote desktop system to access smart card data from the smart card on the RDP client.

  2. The remote desktop system provides access to the smart card on the RDP client to the remote application.

  3. The remote application running on the RD Session Host server will be able to access credential data on the smart card attached to the RDP client computer during logon.

Extensions: None.