Amazon Web Services has enhanced WorkSpaces with support for multi-factor authentication using an on-premises RADIUS server. In plain English, WorkSpaces users will now be able to authenticate themselves using the same mechanism that they already use for other forms of remote access to your organization’s resources. Once this new feature has been enabled and configured, WorkSpaces users will log in by entering their Active Directory user name and password followed by an OTP (One-Time Passcode) supplied by a hardware or a software token. You can enable multi-factor authentication for your AD Connector directory by performing the following procedure.
1. Open the Amazon WorkSpaces console at https://console.aws.amazon.com/workspaces/.
2. In the navigation pane, select “Directories.”
3. Select your directory, click “Actions,” and select “Update Details.”
4. Expand the Multi-Factor Authentication section.
5. Enter the following values and click “Update” or “Update and Exit.”
- Enable Multi-Factor Authentication.
- Check to enable multi-factor authentication.
- Multi-factor authentication is available when the RADIUS Status changes to Enabled.
- During the time that the multi-factor authentication is being set up, your users are not able to log in to their WorkSpaces.
For more information visit: https://aws.amazon.com/blogs/aws/multi-factor-auth-for-workspaces/
All trademarks are property of their respective owners. This site makes every reasonable effort to keep the information accurate and up-to-date. If you have feedback regarding the instructions above, please email firstname.lastname@example.org.