w4ml9 (w4ml9) asked a question.
User's session is destroyed when MFA fails after unlocking RDS Session
Follow these steps to reproduce the issue
User logs in the first time in a RDS Session whit Okta MFA
- enters credentials
- passes Okta MFA
- a new session is created
The user starts to work in the rds environment and, after a while, minimizes the rds screen and continues to work locally
After 1 hour the rds screen locks, this is enabled by GPO
Some time later the user tries to unlock his existing session
- enters his credentials
- does NOT pass Okta MFA but minimizes RDS screen, with an open Okta screen
Okta decides the unlock process can't continue
- Okta forces a 'logoff'
- all open applications are closed
- the user's session is destroyed
The expected behavior would we that these steps result in a locked RDS session.
Is it possible to configure this to work differently ?
Hi,
Given the fact that this issue requires more troubleshooting I suggest opening a ticket with Okta.
Best regards,
Edy