Configuring RD Web Access to support AuthAnvil Two Factor Authentication
Step 1 – Download the RD Web Logon Agent.
Step 2 – Back up the existing RD Web login.aspx page, located by default atC:WindowsWebRDWebPagesen-USlogin.aspx.
Step 3 – Edit sasURL, siteID, ipWhiteList, and usersNotRequiring2FA variables at the top of login.aspx to match your network’s settings.
Note: The usersNotRequiring2FA variable is a comma separated list of usernames that needs to match the users’ Active Directory username (without the domain portion).
Note: ipWhiteList is a comma-seperated list of IPv4 ranges in CIDR format. IE. 192.168.1.0/24 will whitelist the 192.168.1.0 network.
Step 4 – Copy the AuthAnvil.dll file to the RD Web Logon Site’s bin directory, located by default at: C:WindowsWebRDWebPagesBin
Note: Ensure that the AuthAnvil.dll file is not a blocked DLL. Right-click on the DLL, select Properties, and at the bottom of the dialog box click “Unblock”.
Step 5 – Replace the existing RD Web login.aspx page with the login.aspx page from the RD Web Logon Agent Package.
Note: When copying the RD Web Logon Agent files into the appropriate directories, ensure that the logon agent files are set to inherit NTFS permissions.
Step 6 – Navigate to the RD Web logon page, and log in using your Active Directory username (which must match your AuthAnvil username), Active Directory password, and AuthAnvil passcode.
Note: The RDWeb Logon Agent will automatically strip the domain portion of the username before attempting an AuthAnvil authentication, meaning that the domain will not affect authentication. ie. “DOMAINusername” will authenticate as “username”.