Guide

Use MFA for Windows logins

Suggest Edits

Follow this procedure to authenticate to an RDP session using ​Akamai MFA​.

Before you begin

Self-enroll in MFA and activate your trusted mobile device for authentication purposes.

📘

The enrollment of security keys, including the WebAuthn/FIDO2 and phone security key, is not supported for RDP logins.

  • Enable the remote desktop connectivity to the PC that you’re going to log in to.

How to

  1. On your computer launch the remote desktop session by selecting Remote Desktop Connection from the Start menu.

  2. In the Remote Desktop Connection dialog, enter the number of the previously enabled PC and click Connect.

  3. In the Enter your credentials dialog, enter your username and password.
    Upon a successful primary authentication, you’re redirected to ​Akamai MFA​.

  4. In the authentication prompt, select your preferred secondary authentication method. For example, to select the ​Akamai MFA​ push notification, click Send me a Push.
    You receive an authentication request in your account in the ​Akamai MFA​ mobile app on your enrolled device.

  5. Click the incoming alert to display the notification on your mobile device.

  6. In Login request, tap Allow to confirm your identity.

  7. ​Akamai MFA​ displays a confirmation message and connects you to the previously selected remote machine.

Set up offline authentication

Follow these steps to enable offline authentication on your Windows workstation. Note that this feature is available only if your administrator enabled the offline authentication policy.

How to

  1. On your Windows login screen, enter your credentials and press Enter.

  2. Select your authentication device and method to authenticate.

    After successful authentication, you are prompted to activate offline authentication.

  3. Click Activate Now.

  4. With your TOTP authenticator app, scan the QR code displayed on the screen.

  5. After scanning the QR code, your authenticator app displays a 6-digit code. Enter that code into the 6-digit code input field on your workstation.

  6. Click Activate Offline Login.

    You are now logged in to your Windows session. Next time you log in, you will be able to authenticate offline.

Authenticate offline

Follow these steps to log in to your Windows account when you are offline.

How to

  1. On your Windows login screen, enter your credentials and press Enter.

  2. If the ​Akamai MFA​ Windows logon plugin detects that your workstation has no Internet connection, you are prompted to authenticate offline.

  3. Open your TOTP authenticator app to get the 6-digit authorization code.

  4. On your workstation, enter the 6-digit code into the login input field.

  5. Click Login.

    You are now logged in to your Windows session.

Note that depending on the offline policy configuration, you may be prompted to authenticate online after reaching max allowed consecutive offline logins, or max allowed offline days.

Set up your remembered device

If your administrator enabled the remembered devices policy, you can select Remember me for <duration> on the authentication prompt screen to skip subsequent MFA requests for a set period of time.

Updated 11 days ago