locked
Direct Access and 2FA RRS feed

  • Question

  • ----=====REPOST FROM SECURITY BOARD=====----

    Greetings,

    I have a quick question.  When using DA with 2FA, if I cancel the connection attempt when I first login, I have to lock / unlock my PC to get the authentication pop up again. This is not always successful.

    Is there any other way of achieving this?  I am happy enough to lock / unlock the PC (or reboot), I got to thinking if there is a more elegant way of doing this. Does anyone know if you can create a shortcut to the application (I haven't been able to identify it as of yet) that I could place on the desktop?

    I have looked at posts which advise to restart the IPhelper service, but this appears to be unsupported / not recommended by Microsoft.

    TIA for any help you can give.

    Technologies:  Windows 7, Server 2012 R2.

    Thanks

    G


    Regards Gordie

    Tuesday, September 1, 2015 1:05 PM

Answers

  • Hi

    On Windows 7, the DirectAccess Connectivity Assistant is trapping event in the security log that indicate that PKINIT negociation was not successfull. Once trapped, DAC ask for user authentication using 2FA (Smartcard / OTP). From my knowledge there is no Other solution than restarting the IP-Helper service.


    BenoitS - Simple by Design http://danstoncloud.com/blogs/simplebydesign/default.aspx

    • Proposed as answer by BenoitSMVP Wednesday, September 2, 2015 2:40 PM
    • Marked as answer by GordieStirling Thursday, September 3, 2015 7:34 AM
    Wednesday, September 2, 2015 2:40 PM

All replies

  • Hi

    On Windows 7, the DirectAccess Connectivity Assistant is trapping event in the security log that indicate that PKINIT negociation was not successfull. Once trapped, DAC ask for user authentication using 2FA (Smartcard / OTP). From my knowledge there is no Other solution than restarting the IP-Helper service.


    BenoitS - Simple by Design http://danstoncloud.com/blogs/simplebydesign/default.aspx

    • Proposed as answer by BenoitSMVP Wednesday, September 2, 2015 2:40 PM
    • Marked as answer by GordieStirling Thursday, September 3, 2015 7:34 AM
    Wednesday, September 2, 2015 2:40 PM
  • Thanks BenoitS, appreciate the response.

    G


    Regards Gordie

    Thursday, September 3, 2015 7:35 AM