Push Notification Authentication for RADIUS 2FA request (RD Gateway)?

We’re setting up 2FA for our RD Gateway and trying to configure RADIUS and tokens at the moment. Is it possible to setup a Push token for a RADIUS 2FA login request?

The scenario is:

  1. User wants to login to system via Remote Desktop Gateway
  2. To login, user is prompted with Push Notification using privacyidea app
  3. User taps approve and is granted access

Thanks for any help!

Any help answering this question would be greatly appreciated - we’re not looking for confirguration help, just want to know if it’s possible.

RD Gateway is difficult. It might not work to your expectations. Even with “normal” OTP.
Especially with PUSH you need an additional component that triggers the challenge (PUSH notification) with privacyIDEA and checks, if the challenge was answered.

To my knowledge 2FA at the gateway level does not work out smoothly. But this is a vague and very old experience.
You might however take a look at our “privacyIDEA Credential Provider”, that does the 2FA on the desktop level (But also in this case PUSH is not supported, yet).

Short answer: Currently nothing out of the box.

Thank you! Very much appreciated. We’re still looking into how we might do this eventually.