This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(80, 25%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMS%3C/text%3E%3C/svg%3E)
I was asked to crosspost this, so here we go:
Hello, I am currently validating Yubikey Security Keys for my business. The use case is logging in to Salesforce with MFA, but only after connecting to a Terminal Server from a Thin Client via RDP - meaning the SF-user is working on the TS, not on the local machine.
I have most possibly tried all solutions out there (RemoteFX, registry hacks, etc), but up to now, I am unable to get it to work.
For testing purposes, I have as clients
On the remote side, I have
On both the Win 10 VM and the TC, I can select "Webauthn (Windows Hello or Security Key)" from "Local devices and ressources" in the RDP-Client. And indeed, it works perfectly when I connect to the regular Win 10 VM. This tells me that using the Yubikey inside a RDP session is possible after all.
The problem: It will NOT work with Terminal Servers at the remote end. I have checked group policies and allowed basically everything, but to no avail. Why does it work with a Win 10 VM, but not with Terminal Servers? Is there any way to make it work?
Any help is greatly appreciated.
Edit: I do not need Smartcard features or anything fancy, I don't need TOTP, I just need U2F to work like it does between two non-Terminal-Server-Windows-10s.
Hi,
Please test with Windows Server 2022 as your remote desktop session host server (instead of previous versions). I've not had a chance to test it with my Yubikey yet or I would give you a more definitive answer as to whether or not it works. I know the feature is in Preview for AVD, and since it lists 2022 I'm thinking it will work:
Thanks.
-TP
Thx TP, I am currently trying to get a hold of TS 2022 from our ITOPs department. Will report back.
Following up to my initial post: It works with Windows Server 2022!
Hi @Michael Strecker Thanks for updating the post with you results. Please click Accept Answer to close up the thread.
Thank you.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 43%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHS%3C/text%3E%3C/svg%3E)
Can confirm, works with 2022. BUT... we can't upgrade all our W2019 TS.
Is there no way to get ist up + running with yubikey + RDP with W2019?
