It would seem to us that using Okta for Microsoft's RPD services would be a great way to leverage the SSO capabiliites. I have not seen any information on this nor do I see anything in the Okta Application Network. Wondering if any Okta customer's have attempted to implement this?
I have made several inquiries to this with Okta. All feedback has pointed out that this is a very difficult implementation that requires professional services. It also requires Identify Foundation to be in place. There is also some java programming that maybe involved.
It does not sound like they have had many requests for this, but one customer has been able to get it working on the Windows Server 2012 platform.
If you find out anything different, please reply back to this thread.
I am interested in this feature as well and will look into WS Federation+RD Web Access. We currently support MFA+RDP using Duo Security and it was super easy to set up.
I was recently tasked with replacing Duo with Okta to simplify our SSO deployment. Based on the conversation I just had with an Okta support rep, Professional Services is still needed to get the job done. I sure hope Okta has put this on the roadmap...along with multiple profile support in their Verify app.
Another option may be to use the Okta Radius plugin and do it just as Microsoft recommends for Azure Multifactor. https://azure.microsoft.com/en-us/documentation/articles/multi-factor-authentication-get-started-server-rdg/
We now have a native Okta Windows Credential Provider solution which supports Okta MFA factors for RDP into Windows Servers. More info here - http://help.okta.com/en/prod/Content/Topics/Security/proc-mfa-win-creds-rdp.htm