VianeyA.61765 (Customer) asked a question.
OKTA MFA Credential Provider for widnows - doesn't work if another user is logged in.
Hi,
I'm testing Okta MFA for windows (RDP). It partially works. The problem is that if one admin is connected to a server and a second admin connects to the same server, Okta doesn't ask for MFA for the second admin. Am I missing something? We are on windows server 2022.
I tried with different admin accounts, same behaviour. Okta only asks for MFA for the first user that signs in. 😞
Does anyone knows how to force MFA for each session? even when another user is connected.
Thanks,
Vianey A
Hi,
Okta should challenge rdp users for MFA regardless the users are windows administrators or not.
Please check Microsoft RDP (MFA) > Sign On Policy is set to prompt MFA for every users.
And check FilterCredentialProvider and RdpOnly in config file "C:\Program Files\Okta\Okta Windows Credential Provider\config\rdp_app_config.json" having the correct values as per article below.
https://help.okta.com/oie/en-us/Content/Topics/Security/proc-mfa-win-creds-rdp-install.htm
(Setting FilterCredentialProvider to true and RdpOnly to false causes the agent to prompt for MFA if required by the policy.)
Best regards