Ping a Specific Port

Question

MrHinsh - Martin Hinshelwood

Asked: 2016-07-20 23:26:07 +0800 CST2016-07-20 23:26:07 +0800 CST 2016-07-20 23:26:07 +0800 CST

Enable machene joind to AAD to require two factor for login?

772

I have a bunch of machines configured in Azure that use AAD to login. As they currently only require Username and Password I feel that they are at risk. If a user logs in on the web then they are prompted for two factor, but not if they login with the same account to a desktop.

How do I require two factor for RDP/terminal login to any computer joined to my AAD domain?

Just to be clear:

I have no on-premises Active Directory (and don't want)
I have no on-premises infrastructure (and don't want)

1 Answers

Voted

Bruno Faria · Answer 1 · 2016-07-21T06:15:51+08:00

Bruno Faria

2016-07-21T06:15:51+08:002016-07-21T06:15:51+08:00

You can't. Azure Cloud MFA is only available for Office 365, Azure Portal Administration and Cloud Applications.

Available versions of Azure Multi-Factor Authentication

You can, however, install the Azure On-premises MFA Server and use an RD Gateway to accomplish this. RD Gateway is necessary for Windows Server 2012 R2 and later.

Remote Desktop Gateway and Azure Multi-Factor Authentication Server using RADIUS

For Windows Server 2012 and earlier:

Windows Authentication and Azure Multi-Factor Authentication Server

-1

Enable machene joind to AAD to require two factor for login?

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?