If you are new to DualShield, then you might want to first refer to the general instruction on how to build an application in DualShield.
Complete the following steps to build an MFA application for RD Web Client.
Create MFA logon procedures for RD Web
Click the "CREATE" button on the toolbar
In the "Name" field, enter a name for this new logon procedure, e.g. "Office 365"
In the "Type" field, select the type of the logon procedure from the drop list, e.g. "Web SSO"
Click the "SAVE" button to save it.
Now that a new logon procedure is created, you want to add logon steps.
Navigate to Authentication | Logon Procedures
Click the context menu icon "..." of the application to be edited, e.g. "Office 365"
select "Logon Steps" to bring up the logon steps editor
To add a logon step, click the "ADD" button
Select the one or multiple authentication methods that you want to add to this step, e.g. "One-Time Password"
Click the "SAVE" button to save it
You can change the order of the steps by clicking the "UP" and "DOWN" buttons.
For RD Web Access, we must create a Web SSO logon procedure
Once the logon procedure has been created, you need to add logon steps into the newly created logon procedure.
As the logon procedure for RD Web Access is a Web SSO, you can add as many logon steps as you like. And, you can add any type of authentication method in every logon step.
Typically, you will add 2 logon steps.
Create an MFA application for RD Web
However, for RD Web, we must select both the logon procedure for RD Web Access and RD Web Client that we created in the previous step
Publish the MFA application for RD Web
The RD Web application must be published on one or many Single Sign-On (SSO) servers.
You might see two SSO servers in your DualShield platform, one called "SSO Server" and the other called "Single Sign-on Server". The so-called "SSO Server" is the legacy SSO server in DualShield 5 and the "Single Sign-on Server" is the new SSO server in DualShield 6.
Test the MFA application for RD Web
