How to enable MFA on legacy desktop applications

Last updated on April 3, 2024

Here’s how to protect legacy desktop applications with Multi-Factor Authentication (MFA):

1. Install legacy desktop applications on Windows Server
2. Enable RDS access to Windows Server for users
3. Install a Rublon RDS connector to enable MFA on the RDS connections

1. Install legacy desktop applications on Windows Server

Set up a Windows Server and install your legacy desktop applications on the server. Your Windows Server can be an on-premises one. Or, you can have it on a cloud. For example, you can set up your Windows Server on AWS.

2. Enable RDS access to Windows Server for users

The idea is that your users access legacy desktop applications via Remote Desktop Services (RDS) and use Multi-Factor Authentication (MFA) to gain secure access to the apps. So, enable RDS access to your Windows Server for all users who need it.

3. Install a Rublon RDS connector to enable MFA on the RDS connections

Install an RDS connector to enable Multi-Factor Authentication for all RDS connections. You can enable MFA on one or more of the following:

• MFA for RDP
• MFA for RD Gateway
• MFA for RD Web Access
• MFA for RD Web Client
• MFA for RD Web Feed

Result of Enabling MFA on Legacy Desktop Applications

After enabling Multi-Factor Authentication (MFA) on RDP (or RD Gateway), RD Web Access, RD Web Client, and RD Web Feed, your legacy desktop applications gain airtight protection against cyberattacks and other threats.

Users can securely log in to legacy desktop applications with MFA in the following ways:

• Via MFA for RDP: By directly connecting to the Windows Server machine via RDP using their username and password as the first factor and Rublon’s secondary authentication method as the second factor.
• Via MFA for RD Web Access: By signing in to Remote Desktop Web Access, selecting the legacy desktop application, downloading an RDP file, and then opening the file. In this scenario, the user completes MFA when signing in to RD Web Access to download the file. Also, the user completes MFA when they open the RDP file.
• Via MFA for RD Web Client: By signing in to the Remote Desktop Web Client, selecting the legacy desktop application, and connecting to it within the web browser. In this scenario, the user completes MFA twice. First, when signing in to the RD Web Client. Second, after selecting one of the legacy desktop applications.
• Via MFA for RD Web Feed: By running RemoteApp and Desktop Connections and completing MFA. In this scenario, the user completes MFA when adding the legacy applications to the Start menu. The user also completes MFA when they open one of the legacy applications.

The preceding ways of accessing legacy desktop applications involve the user using Multi-Factor Authentication (MFA) before they gain access to resources. This ensures top security and robust protection for legacy applications. Still, administrators can allow users to skip MFA in some scenarios, depending on your company’s security policies.

How Rublon Can Help

Rublon is a modern Multi-Factor Authentication (MFA) solution you can use to protect your applications, services, VPNs, and more. If you want to use Rublon to protect your legacy desktop applications with MFA, start a Free 30-Day Trial.