[GUACAMOLE-1836] Add WebAuthN redirection for RDP connections - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Open
Priority: Trivial
Resolution: Unresolved
Affects Version/s: None
Fix Version/s: None
Component/s: RDP
Labels:
None

Description

Windows RDP allows you to redirect WebAuthN requests using the "redirectwebauthn:i:value" parameter. See: https://learn.microsoft.com/en-us/windows-server/remote/remote-desktop-services/clients/rdp-files#device-redirection

This way you can use a locally attached FIDO2 security key or wearable inside a guac RDP connection where WebAuthN is triggered improving security even further without relying on non-phishing resistant 2fa such as TOTP inside a Guac session.

Attachments

Issue Links

links to

[MS-RDPEWA].pdf

Activity

People

Assignee:: Unassigned

Reporter:: Najib Aouni

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 19/Jul/23 18:24

Updated:: 26/Jul/23 10:37