Secure RDWeb using Azure Multi-Factor Authentication

  • Article

1. Change RDWeb authentication mode from "Forms" to "Windows"

Edit C:\Windows\Web\RDWeb\Pages\web.config

    <authentication mode="Windows"/>

<!--
    <authentication mode="Forms">
        <forms loginUrl="default.aspx" name="TSWAAuthHttpOnlyCookie" protection="All" requireSSL="true" />
    </authentication>
-->
.
.
.

<system.webServer>

<!--
    <modules runAllManagedModulesForAllRequests="true">
      <remove name="FormsAuthentication" />
      <add name="RDWAFormsAuthenticationModule" type="Microsoft.TerminalServices.Publishing.Portal.FormAuthentication.TSDomainFormsAuthentication" />
    </modules>

    <security>
        <authentication>
            <windowsAuthentication enabled="false" />
            <anonymousAuthentication enabled="true" />
        </authentication>
   </security>
-->

2. Add URL for RDWeb access in Azure MFA server

3. Browse RDWeb page on the client and enter credential