Authentication

On the Authentication page, you can configure the authentication settings of Digipass Authentication for Remote Desktop Web Access.

Enable Remote Desktop Web Access authentication

Select this option to allow the Digipass Authentication Module to intercept authentication requests using the authentication server.

Enable single sign-on

Select this option if you want to utilize Remote Desktop Web Access single sign-on. For more information, see Single sign-on for Remote Desktop Web Access.

Add

Click this button if you want to add a new website.

Add default

Click this button to add a new website with default values for Remote Desktop Web Access.

To modify the settings for a website, select the website from the Web Sites list.

Move websites up and down as needed. If you have multiple websites configured to use the same URL path and query string parameters, the top-most website definition in the list will take precedence for authentication.

Site name

Specify a name for the website. This name is used to distinguish the website in the Web Sites list.

Login submit URL

URL path

Specify the URL path.

Query string parameters

Specify query string parameters for the website. The query string parameters list contains URL parameters required as name=value pairs by  Remote Desktop Web Access when a logon is submitted. The Digipass Authentication Module will only identify a request as a logon if these variables are present in the query string.

You need to type the parameter identical to how it will appear in the query string.

Form fields

User name

Specify the label for the user name field of the logon page.

Password

Specify the label for the password field of the logon page.

Domain

Specify the label for the domain field of the logon page.

Failed login

URL

Specify the relative or absolute URL of the failed logon page. If the Digipass Authentication Module fails to authenticate the user, the web browser will be redirected to this URL.

Session variables

Specify session variables for the failed logon page. The Session Variables list contains query string parameters from the logon submit request which should be included in the failed logon URL, e.g. session identifiers.

Return failure reason

Select this if you want to enable the Digipass Authentication Module to add information about a logon failure to the logon page. Authentication failure code and reason will be included in the failed logon page request.

2-Step Challenge/Response

Template

Specify the location of the Challenge/Response template if you want to use 2-step Challenge/Response or Virtual Mobile Authenticator logon.

1-Step Challenge/Response

Enable 1-Step challenge/response

Select this to allow 1-step Challenge/Response logons.

URL path

Specify the URL path of the logon request page.

Query string parameters

Specify query string parameters for the website. The query string parameters list contains URL parameters required by  Remote Desktop Web Access when a logon is submitted. The Digipass Authentication Module will only identify a request as a 1-step Challenge/Response logon if these variables are present in the query string.

You need to type the parameter identical to how it will appear in the query string.

If a website is configured to use the same URL path and query string parameters for both Response-Only and 1-step Challenge/Response logon, the Digipass Authentication Module will not be able to distinguish between them. In this case, it will attempt to perform a 1-step Challenge/Response authentication.

In addition, if you have multiple websites configured to use the same URL path and query string parameters, the top-most website definition in the list will take precedence for authentication.