[
https://issues.apache.org/jira/browse/GUACAMOLE-1836?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Najib Aouni updated GUACAMOLE-1836:
-----------------------------------
Description:
Windows RDP allows you to redirect WebAuthN requests using the
"redirectwebauthn:i:value" parameter. See:
[https://learn.microsoft.com/en-us/windows-server/remote/remote-desktop-services/clients/rdp-files#device-redirection]
This way you can use a locally attached FIDO2 security key or wearable inside a
guac RDP connection where WebAuthN is triggered improving security even further
without relying on non-phishing resistant 2fa such as TOTP inside a Guac
session.
was:
Windows allows you to redirect WebAuthN requests using the
"redirectwebauthn:i:value" parameter. See:
[https://learn.microsoft.com/en-us/windows-server/remote/remote-desktop-services/clients/rdp-files#device-redirection]
This way you can use a locally attached FIDO2 security key or wearable inside a
guac RDP connection where WebAuthN is triggered improving security even further
without relying on non-phishing resistant 2fa such as TOTP inside a Guac
session.
> Add WebAuthN redirection for RDP connections
> --------------------------------------------
>
> Key: GUACAMOLE-1836
> URL: https://issues.apache.org/jira/browse/GUACAMOLE-1836
> Project: Guacamole
> Issue Type: Improvement
> Components: RDP
> Reporter: Najib Aouni
> Priority: Trivial
>
> Windows RDP allows you to redirect WebAuthN requests using the
> "redirectwebauthn:i:value" parameter. See:
> [https://learn.microsoft.com/en-us/windows-server/remote/remote-desktop-services/clients/rdp-files#device-redirection]
> This way you can use a locally attached FIDO2 security key or wearable inside
> a guac RDP connection where WebAuthN is triggered improving security even
> further without relying on non-phishing resistant 2fa such as TOTP inside a
> Guac session.
>
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
