Share via

MFA for RDS running AADDS setup

Leakim79 41 Reputation points
2022-02-23T07:55:56.56+00:00

Hello,

I need some input about a RDS-server environment (AADDS joined) located in Azure & running on a AADDS setup:
rds-azure-adds

The rest of the environment is a hybrid environment running a local ADDS with AAD-Connect.
Source of users/devices is mixed between synced from local ADDS/native AAD.

Users are connecting to this solution via a : https://azureservername.domain.net

I'm looking into a MFA-solution for the RDS.

I have not run into this specific scenario before but I believe the standard setup with the NPS extension won't work in this scenario due to the RDS AADDS setup. Does anyone here have any experience with and a solution for this scenario?

Windows for business | Windows Client for IT Pros | User experience | Remote desktop services and terminal services
Microsoft Security | Microsoft Entra | Microsoft Entra ID
Microsoft Security | Microsoft Entra | Other

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Siva-kumar-selvaraj 15,731 Reputation points Volunteer Moderator
    2022-02-25T21:33:55.56+00:00

    Hello @Leakim79 ,

    Thanks for reaching out.

    AAD DS does not directly support MFA, but you Use Remote Desktop Services (RDS) and Network Policy Server (NPS) integrate Azure AD Multi-Factor Authentication to provide an additional authentication prompt during sign-in events.

    This article shows you how to configure RDS in Azure AD DS and optionally use the Azure AD Multi-Factor Authentication NPS extension.

    177978-image.png

    Hope this helps.

    -----
    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    0 comments

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.