Management Tools Auth with X.509 Certificate Credentials
Management Tools Auth with X.509 Certificate Credentials
0 vote
Hi,
While looking into moving all of our domain admin accounts to require smart-card authentication, I noticed that the Management Tools for RDP entries wasn't working when set to X.509 credentials for the tools. After talking with support, they let me know that only username + password is accepted at this time.
So, this is a request for an update to management tools, to include compatibility with X.509 credentials
All Comments (1)
Hi,
The current management in RDP entries in RDM Windows are using WMI and Windows APIs that only accept a password, with no support for smartcard credentials. We understand the feature request and have been working on some of the building blocks in other part of our software stack:
1) Web-based management consoles using PSRemoting instead of WMI, equivalent to the Management Tools
2) A full RDP virtual smartcard layer wrapping X.509 client certificate entries coming up in RDM 2024.2
We don't have an ETA, but our long term plan would be to rewrite the Remote Tools using PSRemoting instead of WMI, and to then try implement the Kerberos smartcard authentication inside the PSRemoting protocol with our WinRM stack, which would be the only way to support this use case properly.
Unfortunately, none of the built-in protocol implementations support smartcard authentication with supplied credentials, so we have to build the entire thing ourselves.
Best regards,
Marc-André Moreau