Usage

The operation of the Remote Desktop Protection module can be verified as follows:

A user with 2FA enabled in the ESET Secure Authentication Web Console and access to the remote computer is required for testing. In an Active Directory environment, a domain user who has 2FA enabled and is added as an allowed Remote Desktop user on the remote computer is required for testing.

A computer that has Remote Desktop Access enabled is also required.

1.Connect to the remote computer using a Remote Desktop client, and authenticate using the login credentials of the test user.

2.The OTP prompt screen should now appear, as per the figure below.

a.If the user is enabled for SMS OTPs, an SMS will be sent containing an OTP that may be entered to authenticate.

b.If the user has installed the ESET Secure Authentication mobile application on their phone, it may be used to generate an OTP to authenticate. To improve readability, OTPs are displayed in the mobile application with a space between the 3rd and 4th digits. The Remote Desktop Protection module strips whitespace, so a user may include or exclude whitespace when entering an OTP without affecting authentication.

c.If the user has installed the ESET Secure Authentication mobile application on their phone and is allowed to use both OTP and Push authentication, the screen will indicate that the push notification has been approved. Alternatively, the user can proceed to OTP authentication by clicking Enter OTP.

3.If a valid OTP is entered, the user will be granted access to the computer they attempted to connect to.

4.If an invalid OTP is entered, an error message will be displayed, and the user will not be allowed access to the remote computer.