Two-factor authentication adds an extra layer of security and prevents access to your users’ session even if someone knows their password.
A combination of two different factors is used to achieve a greater level of security:
1) something they know, a password.
2) something they have, a device – such as a smartphone – with an authentication app installed..
You can use one of the following authenticator apps to proceed. These apps are available across a wide range of platforms:
– Google Authenticator
– Microsoft Authenticator
Each time a user sign in to its remote session it will need its password and a verification code available from its mobile phone. Once configured, the authenticator app will display a verification code to allow him or her to log in any time. It works even if its device is offline.
OR you can decide to receive verification codes by SMS. In this case, you will have to create a free account on Twilio.
Two-factor authentication is available with HTML5 and Remoteapp connections on remote-work Web portal only, on remote-work Mobile Web and Enterprise Editions. This authentication mode does not support login through Remote Desktop client.
In order to provide an even safer solution, RDP connections are denied for 2FA enabled users.