Share via

Why Doesn't RD Web Client (HTML5) Support Modern Authentication (Azure AD, SSO, OAuth2)?

VIGNESH M 5 Reputation points
2025-03-06T08:04:03.5966667+00:00

Microsoft has been actively improving authentication and security in various remote access solutions, such as Azure Virtual Desktop (AVD), which supports Azure AD authentication, MFA, and SSO. However, the Remote Desktop Web Client (HTML5) still relies on traditional Windows Authentication (NTLM/Kerberos) and lacks built-in support for Modern Authentication methods like OAuth2, OpenID Connect, or direct Azure AD authentication.

Given that many organizations are moving towards hybrid or cloud-based authentication, is there a roadmap for adding Modern Authentication (Azure AD-based SSO, Conditional Access, MFA, etc.) to the RD Web Client (HTML5)? If not, what are the technical limitations preventing this feature from being implemented?

Additionally, is Microsoft focusing more on AVD instead of updating traditional RDS solutions?

Looking forward to insights from the Microsoft team and the community!

Azure Virtual Desktop
Azure Virtual Desktop
A Microsoft desktop and app virtualization service that runs on Azure. Previously known as Windows Virtual Desktop.
1,841 questions

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Alex Burlachenko 10,335 Reputation points
    2025-05-14T12:12:17.7333333+00:00

    Hi Vignesh,

    Thank you for posting your question on the Q&A portal it’s a really important topic, and I appreciate you bringing it up! You’re absolutly right that Modern Authentication methods like Azure Active Directory, OAuth2, and Single Sign-On are becoming standart for many organizations, and it’s understandable to wonder why the Remote Desktop Web Client (HTML5) hasn’t adopted these yet.

    Currently, the RD Web Client does rely on Windows Authentication (NTLM/Kerberos) as you mentioned. Microsoft has documented this behavior in their official Remote Desktop Services documentation, which explains the supported authentication methods.

    As for why Modern Authentication isn’t available yet, Microsoft hasn’t shared a public roadmap for adding it to the HTML5 client. However, Azure Virtual Desktop (AVD) does fully support Azure Active Directory, Conditional Access, and Multi-Factor Authentication, which suggests Microsoft is prioritizing cloud-based solutions. The AVD documentation highlights these capabilites here: Azure Virtual Desktop Authentication.

    That said, traditional Remote Desktop Services (RDS) still has its place in on-premises or hybrid setups, and Microsoft continues to support it. But the focus on AVD does indicate where Microsoft is investing more heavily. If you’re looking for Modern Authentication features, AVD might be the better fit for now.

    I hope this helps clarify things a bit

    Best regards,
Alex
P.S. If my answer help to you, please Accept my answer
PPS That is my Answer and not a Comment
https://ctrlaltdel.blog/
    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.