VPN allow Network Level Authenticaion for RDP bookmarks
With the VPN, when you create a bookmark for remote desktop to a windows machine, you have to uncheck "Allow Connections from computers running Remote Desktop with Network Level Authentication". If you do not, it will throw an error. You can use "NLA" security and that will work for machines with "network access level" enabled, but you need to populate the username and password for that machine to autologin.
This works if you are the only one using that bookmark, but doesn't help if you are creating bookmarks for your employees and you as a technician don't know their credentials, or their credentials change for whatever reason.
What should be done is the addition of a feature where you can still have "Network Level Authentication" enabled, and the Sophos passes the active directory credentials of the user who is logged into the portal. It should NOT auto log in the user based on those credentials, just perform the initial authentication so that it Remote Desktops to the PC then the user can then choose what AD account to login with.
We need it too. Duplicate Idea here: https://ideas.sophos.com/forums/17359-sg-utm/suggestions/12381789-prompt-for-credentials-when-using-nla-with-html5-v
Agree, the user details should be passed to RDP session. Impossible to maintain each users credentials every time it changes.