Skip to content

Instantly share code, notes, and snippets.

@savaged

savaged/remmina-azure-ad.md

Forked from primaryobjects/readme.md
Last active April 10, 2024 13:14
Show Gist options
  • Star 7 You must be signed in to star a gist
  • Fork 2 You must be signed in to fork a gist
  • Save savaged/99ee2a293df64c3abd9e9f1ddb6a4ca8 to your computer and use it in GitHub Desktop.
Save savaged/99ee2a293df64c3abd9e9f1ddb6a4ca8 to your computer and use it in GitHub Desktop.
Download ZIP
How to remote desktop from Linux to Windows 10 with AzureAD Azure AD login
Raw
remmina-azure-ad.md

How to remote desktop from Linux to Windows 10 with AzureAD

The following steps detail how to connect over Remote Desktop from Linux Mint or Ubuntu to Windows 10 with an AzureAD username and password login account.

  1. In Windows 10, right-click This PC or My Computer and select Properties.
  2. Click Remote Settings.
  3. Check the option Allow remote connections to this computer.
  4. Uncheck the option Allow connections only from computers running Remote Desktop with Network Level Authentication.
  5. Click OK.
  6. In Linux Mint, running Software Manager and install Remmina.
  7. Open a terminal and install the RDP plug-in with the following command: 
    sudo apt install remmina remmina-plugin-rdp
  8. Run Remmina.
  9. Create a new connection using RDP.
  10. Enter your Server, Username (your AzureAD email address: AzureAD\name@company.com), Password, Domain: leave blank.
  11. Select Color depth "True color (32 bpp)".
  12. Click the Advanced tab.
  13. For Security select TLS.
  14. Scroll down and check the option Ignore certificate.
  15. Connect.
  16. In the RDP session, you may see another login screen on the remote computer. Login using your username AzureAD\name@company.com and password.

Notes

@usrme
Copy link

usrme commented Jan 17, 2022

To those who have set up mandatory multi-factor authentication for your Azure AD, then you will most likely run into this when trying to log in:

The sign-in method you're trying to use isn't allowed. Try a different sign-in method or contact your system administrator.

The official page for the issue says that you can remove the MFA requirement per user, but the resolution steps fail to mention that even if you install the requisite MSOnline PowerShell module using the Find-Module -Name MSOnline | Install-Module command, then you'll still run into issues as that module isn't supported on PowerShell 7 (at the time of writing this). Executing the necessary Connect-MsolService command to initiate a connection to Azure AD will yield:

Connect-MsolService: Could not load file or assembly 'System.IdentityModel, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089'. The system cannot find the file specified.

There is an issue for this that was promptly closed (after a single day's worth of inactivity...).

Curious to know if there are any workarounds to this that don't require disabling MFA 🤔

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment