![Mac Mac](http://www.musicador.com/uploads/2008/01/mcdsp_nf_575.jpg)
Rohos Logon Key 2-FA software secures your Terminal Server and allows logging in into Remote Desktop by using a password + hardware USB token.
USB over RDP software is an efficient solution tailored for those who want to access USB devices over the Internet, LAN, Wi-Fi, and other networks while working on a remote desktop computer. This dedicated app makes it possible to share any USB port and safely redirect its data over a TCP/IP connection. Remote Desktop access control benefits: Allows applying 2-factor authentication by user list or AD user group or only for Remote Desktop users. User must provide USB token each time for login; Each generated Key is unique and cannot be duplicated by the user. USB Key can be configured on Terminal Server via Remote Desktop or on local Admin PC. Preferences: Yubikey 5 NFC since I'd use USB-A for my computer, NFC for my iPhone, and I can always get a USB-A → lightening adapter for my iPad. I would also like to use the 5 NFC's TOTP feature. I like the idea of using the yubikey to unlock my laptop but I'm on the fence since I don't know how inconvenient that'll be for me yet. USB Redirector solution as USB Network Gate allows USB over Remote Desktop connectivity letting users access local USB devices while working in an RDP session. The software works by sharing a USB port that can be used to connect to any compatible device.
Rohos Logon Key supports a variety of authentication devices
including OTP technology and offers flexible 2-factor authentication
control.
How it works
I had a USB-based serial port for a credit card reader that I needed to redirect through RDP. I configured Remote Desktop to make ports available to the remote session. Initially, I had the serial port to COM100 (to easily avoid potential conflicts), and it didn't work. It did work, however, when I.
Rohos Logon Key
integrates into Windows Terminal Services login screen. It works by adding two-factor authentication level to existing authentication infrastructure. After applying 2-FA policy users can log into Remote Desktop session only by using an additional security device.
Remote Desktop access control benefits:
- Allows applying 2-factor authentication by user list or AD user group or only for Remote Desktop users.
- User must provide USB token each time for login
- Each generated Key is unique and cannot be duplicated by the user.
- USB Key can be configured on Terminal Server via Remote Desktop or on local Admin PC.
- You don't need to install Rohos on a client PC/device you log in from.
- You can use PKCS#11 tokens of different vendors at the same time.
![Bluetooth usb dongles Bluetooth usb dongles](https://mikeshouts.com/wp-content/uploads/2013/01/iTwin-Connect-Remote-Desktop-Access-USB-Dongle-2.jpg)
Higher security level with two-factor authentication variety:
- User login + USB key like SafeNet, eToken, iKey, ePass and any other PKCS#11 enabled.
- User login + USB flash drive.
- Only encrypted password is stored on USB token.
- Any type of One-Time-Password security: by Google Authenticator, YubiKey, SMS authentication or classic OTP tokens.
Read next to find out how to configure it.
![Bluetooth Bluetooth](https://i2.wp.com/www.markwilson.co.uk/blog/images/rdp-local-resources-1.png?w=700)
2-Factor authentication variety and supported security devices
In order to try Remote Desktop login by USB key you can download 15-day trial version Rohos Logon Key. Download
You should have Windows 2003-2016 Server as your Terminal Server computer to try it.
Before you start please review the type of 2-factor authentication:
The type of authentication into Terminal Server | The type of authentication device | Installing Rohos Logon Key on a client PC and/or Server: | |
Client Windows XP-10 | Terminal Server Windows 2003-2016 | ||
1) 2-factor authentication. Physical Key + Windows password (NLA). | USB tokens like eToken, iKey etc (PKCS#11) Smart-card JavaCard OTP, SMS, Yubikey or Google Auth. USB flash drive* | – | + |
2) Just a Physical Key (or a key with PIN code) | USB flash drive USB tokens (PKCS#11) Java-Card, Mifare 1K | + | + |
3) Key is used only on the client side for fast and convenient login. Terminal Server does not check USB key. | Any type of Key | + Ultimate mortal kombat 3 hack zeus edition mame arcade roms pack 500. | – |
* If you are using USB flash drive as a key device: Administrator needs to install Rohos Management Tools or Rohos Logon key on a local PC.
* Setting up 2-FA by using One-Time-Password technology>
The list of supported security devices:
- Smart-card Java-Card, RFID card Mifare 1K/4K
- Any PKCS11 tokens: SafeNet eToken, Securetoken ST3/4, senseLock
trueToken, RuToken, uaToken, iKey, ePass, Crypto Identity. Different
token models/vendors can be used at the same time. - OTP tokens, Google Authenticator for example or YubiKey, authentication by using SMS.
- Regular USB Flash drives.
How to configure USB tokens
1. Install Rohos Logon Key on the Terminal Server
2. Install Rohos Management Tools or Rohos Logon key on administrator's computer.
![Usb Dongle Via Rdp Usb Dongle Via Rdp](https://m.media-amazon.com/images/I/71BtofJ5F5L._AC_SS350_.jpg)
Wifi 6 Usb Dongle
3. Configuring USB tokens for authentication :
On the MS RDC connection settings specify to redirect local USB Drive or Smart-card reader to your Remote Desktop.
On the Remote Desktop open Rohos Logon Key.
Click on 'Setup USB Key' button. Redirected USB Key will be detected. Enter your Windows password and click Setup.
Launching Users and keys command, you can see the list of users whom you have prepared the keys.
– After that your USB Key is ready for login. You may close the TS session and try to log in with the USB Key.
(A note about USB flash drive: 'Rohos Logon Key (RDC setup).exe' file will be copied on USB drive automatically after setup. This is a portable Rohos component that allows to use this key on any PC without installing Rohos Logon Key. Read below about using it.)
4. Apply 2-factor authentication
Open Rohos Logon Key > Options > Allow logging in only by using USB key → For listed users or for Remote Desktop login. It increases the security by disabling the authentication without USB key.
The possible choices are:
- None
All users will be able to login by manual password entry as well as by using USB Key. Is not recommended for Terminal server. - For any user
This is the same as previous option 'Allow login only by USB Key'. All users will be required to use USB Key in order to login. - For listed users
Only users from a list will be required to use USB Key for login. Any other user will be able to login by a password. The list is created automatically when a USB Key is created for a user. Please look at Users and Keys dialog box chapter. - For ‘rohos' user group in Active Directory
Each user from ‘rohos' group will be forced to use USB Key authentication. Rohos will check the user for a ‘rohos' group membership and will allow logging in by password if the user does not belong to a ‘rohos' group.
Please note: ‘rohos' user group should be created by AD Administrator. - For Remote desktop login
Local users can log in with and without USB key. Remote login will be possible only with USB key. - For Remote desktop login outside LAN
Remote desktop login inside LAN will be possible with and without USB key. Only users, who came through the dial-up, DSL connection, and from other networks, will be ought to use USB keys.
![Usb Dongle Via Rdp Usb Dongle Via Rdp](https://evimetry.com/assets/docs/controller-license-update.png)
Remote Desktop connection by USB token
Quicktime version 7.1 for photoshop cs3 free download pc. Ensure you have installed Rohos Logon Key on the client PC or launched Rohos Logon key portable app from USB flash drive.
Remote Desktop Connection Credential prompt
User needs to provide a valid login and password on this step. Authentication key can also be used here (it should be configured only with Rohos USB Key Manager).
Rohos Logon Key check 2FA authentication policy and verify connected authentication Key while connecting to Remote Desktop:
Portable Rohos Logon Key
If you have decided to use USB flash drive and first variant of authentication. You don't need to install Rohos Logon key on every workstation. Only this portable application needs to be installed for free. Sometimes it allows you even to configure new USB keys from such workstation. But in some systems it is not possible, so, you have to install the Rohos Logon key on both computers to create a new key.
You can also find it in the USB key manager application there is an additional option, that provides to copy Rohos Remote Login to USB-drive. Use the Remote Desktop button in USB key manager for it.
A user should run once Logon Key (RDP setup) application on any client PC with Windows 7/8. After that he must launch Remote Desktop application.
Licenses of Rohos Logon Key application for Remote desktop connection
- Rohos Server license is required for each Terminal Server PC with Rohos Logon Key, Windows 2003, 2008, 2012 with RDC access.
- For workstations with RDC access (other Windows versions) – PRO license.
- If you are installing Rohos Logon Key on the local PCs (for 2/3 authentication type) – you need a personal license for each PC.
USB Redirector RDP Edition allows to redirect USB devices to the remote computer when working via Remote Desktop. It consists of two parts - Server part and Workstation part. So USB devices connected to Workstation become available on remote PC, Virtual Machine or Terminal Server. USB Redirector RDP Edition suits great for Virtual Desktop/VDI solutions where you need to redirect USB devices into remote Virtual Machine.
Using USB devices in Desktop Virtualization environment
Usb Dongle Device
More and more large and small companies tend to use Virtual Desktop Environment for their employees because it is flexible, simple and secure. Each user, working via the Remote Desktop, may need accessing his/her USB devices attached to a workstation or thin-client, in the RDP session on virtual desktop. And USB Redirector RDP Edition allows to accomplish this!
This solution is the most suitable for single-user applications, where one Virtual Machine is used by only one user at a time. It also can be used when redirecting devices to Terminal Server. But please note that due to Windows specifics, all USB devices are global in the system to which they are redirected. For multi-user environments, where you need to isolate USB devices in RDP session, you can use our other solution USB Redirector TS Edition
USB Redirector RDP Edition works as background service
USB Redirector RDP Edition works as a background service, this means you don't have to keep the app open all the time. Once you have finished configuring the program, you can safely close it. USB Redirector will continue to work even after reboot.
Redirect local USB device into a remote session in 4 steps
- Step 1. Install USB Redirector RDP Edition (Workstation part) on a workstation or thin-client PC, where USB devices are physically plugged.
- Step 2. Install USB Redirector RDP Edition (Server part) on the Virtual Machine, Terminal Server or remote PC where you wish to connect your USB devices remotely.
- Step 3. Share a required USB device on Workstation.
Please note that shared USB device can not be used locally, because it is acquired for redirection into the remote session! To make the device available locally again, you need to unshare it.
- Step 4. Start Remote Desktop Client and Login to the remote machine:
USB device will be connected automaticaly: - Result. Now you can use the USB device on remote machine just like it was attached there directly.
Licensing
Only the Server part of USB Redirector RDP Edition must be licensed. It means that:
![Usb Dongle Via Rdp Usb Dongle Via Rdp](https://bagel-labs.zendesk.com/hc/article_attachments/360027669214/mceclip3.png)
Rohos Logon Key 2-FA software secures your Terminal Server and allows logging in into Remote Desktop by using a password + hardware USB token.
USB over RDP software is an efficient solution tailored for those who want to access USB devices over the Internet, LAN, Wi-Fi, and other networks while working on a remote desktop computer. This dedicated app makes it possible to share any USB port and safely redirect its data over a TCP/IP connection. Remote Desktop access control benefits: Allows applying 2-factor authentication by user list or AD user group or only for Remote Desktop users. User must provide USB token each time for login; Each generated Key is unique and cannot be duplicated by the user. USB Key can be configured on Terminal Server via Remote Desktop or on local Admin PC. Preferences: Yubikey 5 NFC since I'd use USB-A for my computer, NFC for my iPhone, and I can always get a USB-A → lightening adapter for my iPad. I would also like to use the 5 NFC's TOTP feature. I like the idea of using the yubikey to unlock my laptop but I'm on the fence since I don't know how inconvenient that'll be for me yet. USB Redirector solution as USB Network Gate allows USB over Remote Desktop connectivity letting users access local USB devices while working in an RDP session. The software works by sharing a USB port that can be used to connect to any compatible device.
Rohos Logon Key supports a variety of authentication devices
including OTP technology and offers flexible 2-factor authentication
control.
How it works
I had a USB-based serial port for a credit card reader that I needed to redirect through RDP. I configured Remote Desktop to make ports available to the remote session. Initially, I had the serial port to COM100 (to easily avoid potential conflicts), and it didn't work. It did work, however, when I.
Rohos Logon Key
integrates into Windows Terminal Services login screen. It works by adding two-factor authentication level to existing authentication infrastructure. After applying 2-FA policy users can log into Remote Desktop session only by using an additional security device.
Remote Desktop access control benefits:
- Allows applying 2-factor authentication by user list or AD user group or only for Remote Desktop users.
- User must provide USB token each time for login
- Each generated Key is unique and cannot be duplicated by the user.
- USB Key can be configured on Terminal Server via Remote Desktop or on local Admin PC.
- You don't need to install Rohos on a client PC/device you log in from.
- You can use PKCS#11 tokens of different vendors at the same time.
Higher security level with two-factor authentication variety:
- User login + USB key like SafeNet, eToken, iKey, ePass and any other PKCS#11 enabled.
- User login + USB flash drive.
- Only encrypted password is stored on USB token.
- Any type of One-Time-Password security: by Google Authenticator, YubiKey, SMS authentication or classic OTP tokens.
Read next to find out how to configure it.
2-Factor authentication variety and supported security devices
In order to try Remote Desktop login by USB key you can download 15-day trial version Rohos Logon Key. Download
You should have Windows 2003-2016 Server as your Terminal Server computer to try it.
Before you start please review the type of 2-factor authentication:
The type of authentication into Terminal Server | The type of authentication device | Installing Rohos Logon Key on a client PC and/or Server: | |
Client Windows XP-10 | Terminal Server Windows 2003-2016 | ||
1) 2-factor authentication. Physical Key + Windows password (NLA). | USB tokens like eToken, iKey etc (PKCS#11) Smart-card JavaCard OTP, SMS, Yubikey or Google Auth. USB flash drive* | – | + |
2) Just a Physical Key (or a key with PIN code) | USB flash drive USB tokens (PKCS#11) Java-Card, Mifare 1K | + | + |
3) Key is used only on the client side for fast and convenient login. Terminal Server does not check USB key. | Any type of Key | + Ultimate mortal kombat 3 hack zeus edition mame arcade roms pack 500. | – |
* If you are using USB flash drive as a key device: Administrator needs to install Rohos Management Tools or Rohos Logon key on a local PC.
* Setting up 2-FA by using One-Time-Password technology>
The list of supported security devices:
- Smart-card Java-Card, RFID card Mifare 1K/4K
- Any PKCS11 tokens: SafeNet eToken, Securetoken ST3/4, senseLock
trueToken, RuToken, uaToken, iKey, ePass, Crypto Identity. Different
token models/vendors can be used at the same time. - OTP tokens, Google Authenticator for example or YubiKey, authentication by using SMS.
- Regular USB Flash drives.
How to configure USB tokens
1. Install Rohos Logon Key on the Terminal Server
2. Install Rohos Management Tools or Rohos Logon key on administrator's computer.
Wifi 6 Usb Dongle
3. Configuring USB tokens for authentication :
On the MS RDC connection settings specify to redirect local USB Drive or Smart-card reader to your Remote Desktop.
On the Remote Desktop open Rohos Logon Key.
Click on 'Setup USB Key' button. Redirected USB Key will be detected. Enter your Windows password and click Setup.
Launching Users and keys command, you can see the list of users whom you have prepared the keys.
– After that your USB Key is ready for login. You may close the TS session and try to log in with the USB Key.
(A note about USB flash drive: 'Rohos Logon Key (RDC setup).exe' file will be copied on USB drive automatically after setup. This is a portable Rohos component that allows to use this key on any PC without installing Rohos Logon Key. Read below about using it.)
4. Apply 2-factor authentication
Open Rohos Logon Key > Options > Allow logging in only by using USB key → For listed users or for Remote Desktop login. It increases the security by disabling the authentication without USB key.
The possible choices are:
- None
All users will be able to login by manual password entry as well as by using USB Key. Is not recommended for Terminal server. - For any user
This is the same as previous option 'Allow login only by USB Key'. All users will be required to use USB Key in order to login. - For listed users
Only users from a list will be required to use USB Key for login. Any other user will be able to login by a password. The list is created automatically when a USB Key is created for a user. Please look at Users and Keys dialog box chapter. - For ‘rohos' user group in Active Directory
Each user from ‘rohos' group will be forced to use USB Key authentication. Rohos will check the user for a ‘rohos' group membership and will allow logging in by password if the user does not belong to a ‘rohos' group.
Please note: ‘rohos' user group should be created by AD Administrator. - For Remote desktop login
Local users can log in with and without USB key. Remote login will be possible only with USB key. - For Remote desktop login outside LAN
Remote desktop login inside LAN will be possible with and without USB key. Only users, who came through the dial-up, DSL connection, and from other networks, will be ought to use USB keys.
Remote Desktop connection by USB token
Quicktime version 7.1 for photoshop cs3 free download pc. Ensure you have installed Rohos Logon Key on the client PC or launched Rohos Logon key portable app from USB flash drive.
Remote Desktop Connection Credential prompt
User needs to provide a valid login and password on this step. Authentication key can also be used here (it should be configured only with Rohos USB Key Manager).
Rohos Logon Key check 2FA authentication policy and verify connected authentication Key while connecting to Remote Desktop:
Portable Rohos Logon Key
If you have decided to use USB flash drive and first variant of authentication. You don't need to install Rohos Logon key on every workstation. Only this portable application needs to be installed for free. Sometimes it allows you even to configure new USB keys from such workstation. But in some systems it is not possible, so, you have to install the Rohos Logon key on both computers to create a new key.
You can also find it in the USB key manager application there is an additional option, that provides to copy Rohos Remote Login to USB-drive. Use the Remote Desktop button in USB key manager for it.
A user should run once Logon Key (RDP setup) application on any client PC with Windows 7/8. After that he must launch Remote Desktop application.
Licenses of Rohos Logon Key application for Remote desktop connection
- Rohos Server license is required for each Terminal Server PC with Rohos Logon Key, Windows 2003, 2008, 2012 with RDC access.
- For workstations with RDC access (other Windows versions) – PRO license.
- If you are installing Rohos Logon Key on the local PCs (for 2/3 authentication type) – you need a personal license for each PC.
USB Redirector RDP Edition allows to redirect USB devices to the remote computer when working via Remote Desktop. It consists of two parts - Server part and Workstation part. So USB devices connected to Workstation become available on remote PC, Virtual Machine or Terminal Server. USB Redirector RDP Edition suits great for Virtual Desktop/VDI solutions where you need to redirect USB devices into remote Virtual Machine.
Using USB devices in Desktop Virtualization environment
Usb Dongle Device
More and more large and small companies tend to use Virtual Desktop Environment for their employees because it is flexible, simple and secure. Each user, working via the Remote Desktop, may need accessing his/her USB devices attached to a workstation or thin-client, in the RDP session on virtual desktop. And USB Redirector RDP Edition allows to accomplish this!
This solution is the most suitable for single-user applications, where one Virtual Machine is used by only one user at a time. It also can be used when redirecting devices to Terminal Server. But please note that due to Windows specifics, all USB devices are global in the system to which they are redirected. For multi-user environments, where you need to isolate USB devices in RDP session, you can use our other solution USB Redirector TS Edition
USB Redirector RDP Edition works as background service
USB Redirector RDP Edition works as a background service, this means you don't have to keep the app open all the time. Once you have finished configuring the program, you can safely close it. USB Redirector will continue to work even after reboot.
Redirect local USB device into a remote session in 4 steps
- Step 1. Install USB Redirector RDP Edition (Workstation part) on a workstation or thin-client PC, where USB devices are physically plugged.
- Step 2. Install USB Redirector RDP Edition (Server part) on the Virtual Machine, Terminal Server or remote PC where you wish to connect your USB devices remotely.
- Step 3. Share a required USB device on Workstation.
Please note that shared USB device can not be used locally, because it is acquired for redirection into the remote session! To make the device available locally again, you need to unshare it.
- Step 4. Start Remote Desktop Client and Login to the remote machine:
USB device will be connected automaticaly: - Result. Now you can use the USB device on remote machine just like it was attached there directly.
Licensing
Only the Server part of USB Redirector RDP Edition must be licensed. It means that:
- If you use Virtual Machines, you need as many licenses as you have Virtual Machines.
- If you use Terminal Servers, you need as many licenses as you have Terminal Servers.
- If you use regular Workstations, you need as much licenses as you have Workstations acting as RDP server.
The license allows to connect a certain number of devices. The number of devices is per-server, not per-user.
The license should be applied on Terminal Server/Virtual Machine.
Workstation part of USB Redirector RDP Edition is FREE.
Pricing
USB Redirector RDP Edition licenses start from USD 89.99, depending on the number of USB devices. There are quantity discounts if you purchase several licenses at once. Check the Purchasing page for details.
System Requirements
USB Redirector RDP Edition works on the following operating systems (both 32- and 64-bit).
Windows Desktop/Laptop:
- Windows 10
- Windows 8.1
- Windows 8
- Windows 7
- Windows Vista
- Windows XP (SP3 or newer)
Windows Server (including Server Core and Hyper-V):
- Windows 2019
- Windows 2016
- Windows 2012 R2
- Windows 2012
- Windows 2008 R2
- Windows 2008
- Windows 2003 (SP1 or newer)