-
|
Hello, I am trying to configure a user role in Teleport that allows access to Windows desktops using domain usernames. I have included the domain prefix in the windows_desktop_logins field of the YAML configuration (e.g., nameofsystem\Username1). However, this approach hasn't been successful. Unfortunately, I can't login to this resource using "Username1" alone as its giving me multiple errors.
Is there specific YAML syntax to include the domain name, or are there alternative methods if domain usernames aren't directly supported? Any advice would be great. Thank you very much |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 3 replies
-
|
There is no need to include the domain in the allowed usernames. When you connect to the desktop, the domain will automatically be added if the desktop is registered with Teleport as belonging to an AD domain. |
Beta Was this translation helpful? Give feedback.
-
|
Is it using this configuration https://goteleport.com/docs/desktop-access/active-directory-manual/? Unfortunately, Teleport talks through a secure LDAP, which we can't do at the moment. If its not that, how do I register the desktop with Teleport as belonging to an AD domain? Thanks |
Beta Was this translation helpful? Give feedback.
-
|
There are two options to connect to Windows hosts with RDP:
Sounds like you want domain users, which rules out option 2 completely. |
Beta Was this translation helpful? Give feedback.
-
|
We were already considering migrating to secure LDAP in the future, so we might speed up that process so we can set up Teleport correctly. Thank you very much :) |
Beta Was this translation helpful? Give feedback.
There are two options to connect to Windows hosts with RDP:
Sounds like you want domain users, which rules out option 2 completely.
It also sounds like you can't do secure LDAP, which rules out option 1.
We're now out of options unfortunately 😢