search

bolkedebruin / rdpgw

Remote Desktop Gateway in Go for deploying on Linux/BSD/Kubernetes
Apache License 2.0
693 stars 117 forks source link

Can omit username from rendered RDP #83

Closed KoltesDigital closed 3 months ago

KoltesDigital commented 9 months ago

Following PR #58 too. That patch had one extra ability that your main branch doesn't have yet: omitting the username field.

Without this field, the RDP window opens and asks the password for the last authenticated user on the device, or to switch to another user, within the joined domain. Well it looks exactly like the authentication screen in front of the actual computer.

Random image to exemplify: example

The current behavior, with this field, is to always ask for username and password, with undefined domain.

Random image to exemplify: example

Note that I'm connecting to AAD-joined devices from personal (non-AAD-joined) device. FTR, the username is indeed AzureAD\email@domain like shown on the second image. The corresponding config is

UsernameTemplate: '.\AzureAD\{{ username }}'

(no idea why .\ is required) and the following defaults are needed

authentication level:i:2
enablecredsspsupport:i:0

as documented on many websites. I think these info are valuable and should appear on the README.

KoltesDigital commented 3 months ago

@bolkedebruin oops sorry for the mess, I actually don't speak go 😄