Details
-
Improvement
-
Status: Open
-
Trivial
-
Resolution: Unresolved
-
None
-
None
-
None
Description
Windows RDP allows you to redirect WebAuthN requests using the "redirectwebauthn:i:value" parameter. See: https://learn.microsoft.com/en-us/windows-server/remote/remote-desktop-services/clients/rdp-files#device-redirection
This way you can use a locally attached FIDO2 security key or wearable inside a guac RDP connection where WebAuthN is triggered improving security even further without relying on non-phishing resistant 2fa such as TOTP inside a Guac session.
Attachments
Issue Links
- links to