Environment
DUO
Zscaler
Windows
Solution
Due to shifting tactics of threat actors in the post-pandemic business environment, all non-Zscaler devices must authenticate with MFA to use the Remote Desktop Protocol when connecting to a VCU computer.
1. For Windows computers, the DUO prompt will appear when individuals attempt to log in over RDP under the following circumstances:
-
- When the computer is on campus, and 1) the individual is accessing it from a non-VCU-managed machine or 2) the individual is accessing it from a VCU-managed machine without an active ZScaler connection.
- When the computer is at home or an alternative location (non-VCU network).
- When the computer is on campus, and 1) the individual is accessing it from a non-VCU-managed machine or 2) the individual is accessing it from a VCU-managed machine without an active ZScaler connection.
2. For Windows servers, MFA prompts will appear if you RDP to a Windows server from a non-VCU-managed machine, or from a VCU-managed machine without an active ZScaler connection.
The Windows login prompt will look similar to the following:
