deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-06-16 10:53:43 +00:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity

Update network-security-allow-pku2u-authentication-requests-to-this-computer-to-use-online-identities.md

Browse Source
This commit is contained in:
Daniel Simpson
2019-11-26 09:48:14 -08:00
committed by GitHub
parent baac14d30f
commit d7809f3a72
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
windows/security/threat-protection/security-policy-settings/network-security-allow-pku2u-authentication-requests-to-this-computer-to-use-online-identities.md
View File

@ -42,7 +42,7 @@ This policy is not configured by default on domain-joined devices. This would di
This will allow authentication to successfully complete between the two (or more) computers that have established a peer relationship through the use on online IDs. The PKU2U SSP obtains a local certificate and exchanges the policy between the peer devices. When validated on the peer computer, the certificate within the metadata is sent to the logon peer for validation. It associates the user's certificate to a security token, and then the logon process completes.
> [!Note]
> KU2U is disabled by default on server SKUs and thus, RDP from a hybrid Azure AD joined server to an Azure AD joined Windows 10 device, or Hybrid Azure AD joined domain member Windows 10 device, fails. To resolve this, PKU2U needs to be enabled on the server SKU.
> KU2U is disabled by default on Windows Server. Remote desktop connections from a hybrid Azure AD-joined server to an Azure AD-joined Windows 10 device, or Hybrid Azure AD-joined domain member Windows 10 device, fails. To resolve this, enable PKU2U on the Server.
- **Disabled**