One Identity Safeguard for Privileged Sessions 7.5 - Installation Guide

Prerequisites

• SPS must be configured to act as a Remote Desktop Gateway. For details, see Using One Identity Safeguard for Privileged Sessions (SPS) as a Remote Desktop Gateway.

• The client must use version 6.1 or newer of the Remote Desktop application.

• The target server must be member of a domain.

• The logical interface of SPS must be accessible from the client. You might have to add the address of the logical interface to the Windows/System32/Drivers/etc/hosts file to accomplish this.

To configure Remote Desktop clients for gateway authentication

1. On your Windows client, start the Remote Desktop Connection application and select Advanced > Settings.

   Figure 20: Configuring Remote Desktop clients to use SPS as a Remote Desktop Gateway (or RD Gateway)

   

2. Configure the client to use SPS as its Remote Desktop Gateway. Select Connection settings > Use these RD Gateway settings.

   Figure 21: Configuring Remote Desktop clients to use SPS as a Remote Desktop Gateway (or RD Gateway)

   

3. Enter the address of SPS into the Server name field. Use the address of the SPS's logical interface that you have configured to accept RDP connections.

4. Select Logon method > Ask for password (NTLM).

5. Uncheck the Bypass RD Gateway server for local addresses and Use my RD Gateway credentials for the remote computer options.

   NOTE: Technically, gateway authentication is performed even if the Use my RD Gateway credentials for the remote computer option is selected, but the same credentials are used on the gateway and on the remote server.

6. Click OK.

7. Into the Username enter the domain username (for example, exampledomain\exampleusername).

8. Click Connect.

   NOTE: Depending on your network environment, it might take up to a minute until the connection is established.