RDP login by IPI Authenticator App

IPI Authenticator App Use Cases - RDP login by IPI Authenticator App

Logging in through IPI Authenticator for RDP (Remote Desktop Protocol) enhances security and simplifies access to remote PCs.

There are two ways to log in to an RDP session using IPI Authenticator:

  1. Scanning a QR code on the local workstation in the Remote Desktop Connection client. This enables passwordless login or password-based login.

  2. Scanning a QR code on the remote PC screen. This option requires a pre-created password-based account on the remote workstation.

Login by Scanning a QR Code on the Local Workstation

Requirements:

  • A workstation with Windows 10/11, with IPI Client installed and connected to IPI Server.

  • For passwordless login, the local PC must be part of an On-Prem AD (On-Premises Active Directory) domain and have TPM 2.0 (Trusted Platform Module 2.0).

  • A registered IPI Authenticator application on the server.

  • An account for passwordless unlocking of the local workstation.

Steps for Login by Scanning a QR Code on the Local Workstation:

1. Create an Account in IPI Authenticator:

  • Register an account for logging in with credentials from the remote PC on the main PC by scanning a QR code using the IPI Authenticator app.

  • Both login methods are available: passwordless and password-based.

  • If you plan to use passwordless login, ensure that the main PC has a TPM module and a domain account (this is not required for the remote PC).

2. Connect via RDP:

  • Open the Windows RDP client on the main PC and specify the address of the remote computer.

3. Set Up Authentication:

  • Click Connect, then choose More choices.

4. Select IPI Key for Authentication:

  • Choose the IPI Key option for authentication.

5. Show QR Code:

  • Click the Show QR code button to generate a QR code for scanning.

6. Scan the QR Code:

  • Open the IPI Authenticator app on your mobile device and scan the QR code displayed on the screen.

7. Confirm Login:

  • In the IPI Authenticator app, confirm the login by selecting:

    • The workstation name (should match the main PC).

    • The account name.

Note: Some devices allow scanning the QR code directly with the camera, which will automatically redirect you to the IPI Authenticator app for confirmation.

Login to the Remote Workstation by Scanning a QR Code on the Remote PC Screen

Requirements:

  • A remote workstation with Windows 10/11, with IPI Client installed and connected to the server.

  • A registered IPI Authenticator application on the server.

  • An account for unlocking the remote workstation.

  • Supported account types: local, domain, Microsoft, On-Prem AD (On-Premises Active Directory), Azure AD.

Steps for Login by Scanning a QR Code on the Remote Workstation:

1. Log into the Remote Workstation and Create a Password-Based Account:

  • Open the IPI Authenticator app and scan the QR code to set up the account.

2. Open the Remote Desktop Connection Client:

  • Enter the name or IP address of the computer you want to unlock.

3. Scan the QR Code:

  • In the IPI Authenticator app on your mobile device, open the QR code scanner and scan the QR code displayed on the lock screen of the remote workstation.

4. Confirm Login to the Workstation in IPI Authenticator:

  • In the IPI Authenticator app, confirm the login by selecting:

    • The workstation name (should match the main PC).

    • The account name.

Note: If the QR code does not appear on the lock screen during the Remote Desktop Connection session, use a configuration file with the parameter enablecredsspsupport:i:0 enabled. Refer to our troubleshooting guide for additional settings.

Compatibility

This login method is compatible with Windows and macOS operating systems for all account types.

PreviousOTP generation by IPI Authenticator App for 2FANextRemote PC lock

Last updated