Guest Laurie Posted October 30, 2007 Posted October 30, 2007 Hi, I have a client that is subject to the laws of HIPAA. For remote access they require a two factor authentication process. So username and password and 'something else'. Now for the wrench, they want to use Remote Desktop, not VPN for remote access. Is there anyway to tie in IAS and Remote Desktop? Thanks, Laurie
Guest Nick Owen Posted November 1, 2007 Posted November 1, 2007 Re: IAS/Remote Desktop On Oct 30, 11:40 am, Laurie <Lau...@discussions.microsoft.com> wrote: > Hi, > > I have a client that is subject to the laws of HIPAA. For remote access > they require a twofactor authenticationprocess. So username and password > and 'something else'. Now for the wrench, they want to use Remote Desktop, > not VPN for remote access. Is there anyway to tie in IAS and Remote Desktop? > > Thanks, > > Laurie http://www.isaserver.org/tutorials/Publishing-Remote-Desktop-Web-Connection-Sites-ISA-Firewall-Part1.html this might help. Also, note that 2 factor authentication is not necessarily username and password and something else. It is usually done with a PIN, something you know and a one-time passcode generated by in such a way as to prove possession of 'something you have' - e.g a hardware token or in a software token possession of a cryptographic key (which may be on a hardware device such as a Blackberry or a USB drive). I mention this because you will probably want to run your remote desktop authentication through radius and it's the simplest set up. HTH, Nick -- Nick Owen WiKID Systems, Inc. 404.962.8983 http://www.wikidsystems.com Commercial/Open Source Two-Factor Authentication irc.freenode.net: #wikid
Recommended Posts