MFA for RDS running AADDS setup

Leakim79 41 Reputation points
2022-02-23T07:55:56.56+00:00

Hello,

I need some input about a RDS-server environment (AADDS joined) located in Azure & running on a AADDS setup:
rds-azure-adds

The rest of the environment is a hybrid environment running a local ADDS with AAD-Connect.
Source of users/devices is mixed between synced from local ADDS/native AAD.

Users are connecting to this solution via a : https://azureservername.domain.net

I'm looking into a MFA-solution for the RDS.

I have not run into this specific scenario before but I believe the standard setup with the NPS extension won't work in this scenario due to the RDS AADDS setup. Does anyone here have any experience with and a solution for this scenario?

Remote Desktop
Remote Desktop
A Microsoft app that connects remotely to computers and to virtual apps and desktops.
4,225 questions
Microsoft Entra
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,382 questions

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Siva-kumar-selvaraj 15,546 Reputation points
    2022-02-25T21:33:55.56+00:00

    Hello @Leakim79 ,

    Thanks for reaching out.

    AAD DS does not directly support MFA, but you Use Remote Desktop Services (RDS) and Network Policy Server (NPS) integrate Azure AD Multi-Factor Authentication to provide an additional authentication prompt during sign-in events.

    This article shows you how to configure RDS in Azure AD DS and optionally use the Azure AD Multi-Factor Authentication NPS extension.

    177978-image.png

    Hope this helps.

    -----
    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    0 comments