Dear users and customers, we are happy to announce a few improvements in Rohos Logon Key. New features affects “Allow login only by USB Key” feature specially when using Rohos Logon in corporate network or Windows Remote Desktop services.
Chisinau, Moldova (08/04/10) Tesline-Service today announced that now its two-factor authentication solution Rohos Logon Key v.2.8 supports MiFare S50/S70 smart cards to provide the most secure physical and network access to Windows systems.
The use of Smart Cards for user authentication is considered to be the strongest form of authentication and combines something physical (Smart Card) with confidential information (PIN) to provide what is known as “two-factor authentication.” Rohos Logon Key along with MiFare is a perfect solution for companies with environment that requires many employees to log into just one or only a few PCs. It will help thousands of organizations balance user convenience with strong security to create a competitive advantage and maintain trust within the enterprise.
The solution provides one of the most advanced authentication solutions available, using RFID smart card technology with the following benefits:
- Avoid constant friction wears away the interface between token and PC
- Possibility to use Mifare token with Rohos Logon Key as an Access Card used in the community, company
- Supports Remote Desktop login using Microsoft Remote Desktop Control utility
Microsoft Remote Desktop Connection 6.0 (on Windows Vista\Seven) by default makes it mandatory for the user to enter user name and password before RDP client can establish connection to the WinSeven/2008 remote server (“ Enter your credentials for <server>. These credentials will be used when you connect to the remote computer” ). This is called “ Network Level Authentication“. If you are going to use USB key you can skip this prompt or disable it.
on vista you will see
As Rohos Logon Key RDC plugin works with the established terminal session this Credentials Prompt may be ignored or disable it by default.
Actually if Rohos Logon is installed locally it could work in this ‘credential prompt’ window:
How to disable RDC Credentials Prompt:
To skip the credentials prompt – choose â€œDo not attempt authenticationâ€ under Authentication options on the Advanced tab, but this option is not set permanently. To permanently skip the additional credential screen , edit the Default.RDP file (My Documents folder) in notepad. Including enablecredsspsupport:i:0 disables the Credentials Security Service Provider for the connection. If you use separate .RDP files for different server, modify each of those .RDP files. Below is the content section of the default.rdp file with enablecredsspsupport:i:0 option included.
prompt for credentials:i:0
negotiate security layer:i:1
Note that this workaround is suggested only if you connect Windows 2000/2003/XP systems because according to Terminal Services Team blog post â€“ â€œThis option does disable the new credential prompting behavior, but it also disables support for Network Level Authentication for Vista (and Longhorn Server) RDP connections; Network Level Authentication requires credentials to be provided by the client before a session is created on the server side.â€ So if you do connect to Vista over RDP, youâ€™ll not be able to use this option.
- 2FA bypass control in Rohos Logon Key 4.8 30th June 2021
- What are strategies for protecting against two-factor authentication vulnerabilities? 5th January 2021
- New Rohos Disk Encryption app for Android to access encrypted Google Drive folders 26th December 2020
- MFA for Remote Desktop access with U2F FIDO security keys in Rohos Logon Key v.4.7 24th December 2020
- P2P encryption ownership in secure online storage products (Mega.nz, OneDrive) 1st October 2020