JasonY.18808 (Contoso) asked a question.
Hey Team,
Have any of you experienced challenges with Okta Windows Credential Provider (using mfa for rdp app) for accounts that have "!" in the username?
Accounts without this character seem to be working without issue.
The logs show they are not passing correctly to Okta.
AppUsername sent to Okta=!oktaTestUser93A
exception thrown is = System.Net.WebException: The remote server returned an error: (403) Forbidden.<CR><LF> at System.Net.HttpWebRequest.GetResponse()<CR><LF> at OktaWidget.JwtService.GetStateTokenUsingJwt(String username)<CR><LF> at OktaWidget.OktaWidgetForm..ctor(String username, Int64 parent, Int64 widgetFlow)<CR><LF> at OktaWidget.OktaWidgetClass.displayWidget(Int64 parent, String username, Int64 flow)
Hi @JasonY.18808 (Contoso) , Thank you for reaching out to the Okta Community!
Judging by the example username given, I assume that you have removed any username format restrictions from Okta Admin Dashboard/Profile Editor.
From what I've seen this type of error message appears when the user is either not enrolled in MFA or the username under assignments does not match the username that the user is using to login. Check the username under assignments and also check that the user is enrolled in an MFA before they try to RDP.
If my answer helped, remember to mark it as best to increase its visibility for other members of the Okta Community who might have the same questions as you.
Hope my answer helps!
--------------------------------
Community members help others by clicking Upvote or Select as Best on responses. Try it today.