| Yubico Forum https://forum.yubico.com/ |
|
| [QUESTION] Yubikey Neo as SmartCard over RDP https://forum.yubico.com/viewtopic.php?f=26&t=1716 |
Page 1 of 1 |
| Author: | GrumpyChops [ Tue Jan 20, 2015 10:39 pm ] |
| Post subject: | [QUESTION] Yubikey Neo as SmartCard over RDP |
I have two Neo's, both are configured as Smart Card's, with certificates from my internal PKI. I can use them to log on to my Windows 7/8.1 desktops/laptops, just fine. I can log on to a Windows Server 2008 R2 physical server, I just need to allow it to self install the drivers first. If I try to use RDP to connect from the Windows 8.1 machine to the Windows 7 machine, I can log on fine. However, if I try to log onto the same Windows 2008 R2 server hardware (as above) via RDP, the Smart Card is not recognized, so cannot be used to log on. It seems like any server that I try to use the smart card on (via RDP), the pre-authentication works, getting me to the "Legal Warning" dialog box. Once that is "OK'ed", the standard log on dialog is presented, without the ability to use a smart card. Note that the RDP client is configured to pass through the smart card device. I have tested against Server 2008 R2, Server 2012 (R2 and Non-R2). Before I go digging too far down the rabbit hole, am I missing something blindly obvious? TIA! |
|
| Author: | Tom2 [ Thu Feb 05, 2015 9:09 am ] |
| Post subject: | Re: [QUESTION] Yubikey Neo as SmartCard over RDP |
I can confirm it works fine on 2012 R1 R2 Is it PIV supported in 2008 R2, don't you need drivers? |
|
| Author: | GrumpyChops [ Thu Feb 19, 2015 1:20 pm ] |
| Post subject: | Re: [QUESTION] Yubikey Neo as SmartCard over RDP |
I was missing something blindingly obvious! Just had to make a few GPO changes related to RDP, I noticed that Smart Card redirection was actively disabled (Do not allow smart card device redirection) - god knows why this was ever set! Anyway, now that this has been un-configured, smart card logon to my servers works fine! |
|
| Page 1 of 1 | All times are UTC + 1 hour |
| Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/ |
|