Learn how to authenticate to desktops using RDP.
Keyless authentication will be used for RDP sessions into all workstations that have the Keyless Workforce Access Client installed.
Keyless authentication will be used only for users that are not excluded from Keyless for the specific workstation.
Using the Remote Desktop Protocol application on your workstation or via the command line, initiate an RDP session for a Keyless-enabled user to a Keyless-enabled workstation:
Once connected, you will be prompted with a message to authenticate on your mobile device.
Authenticate on your device:
Access the workstation:
Learn how to authentication to Windows Workstation
Windows Passwordless login allow you to login to your workstation easily and securely without the need for a password. Follow the steps below to login.
On your first Keyless passwordless login attempt you will be required to enter your existing password. This is a one-time operation to maintain high security.
From your Windows lock screen and click "Sign in"
You will receive a push notification to your mobile phone. Clicking the notification will open the Keyless application.
Confirm your login attempt by clicking "Approve" in the Login Request Screen.
Authenticate by looking straight into the camera of your phone.
Windows Passwordless login allow you to login to your workstation easily and securely by adding Keyless as another layer of security on top of your Windows password. Follow the steps below to login.
If you wish to use Keyless "passwordless" mode and avoid the need to insert your password, please contact your IT administrator.
Enter your user password in the Windows lock screen and click "Sign in"
You will receive a push notification to your mobile phone. Clicking the notification will open the Keyless application.
Confirm your login attempt by clicking "Approve" in the Login Request Screen.
Authenticate by looking straight into the camera of your phone.
Offline Mode enables you to perform a workstation login when there is no internet connection. As described in the instructions below, it is up to you when to enable and disable offline login. Follow the steps below to login.
All users can enable and disable offline mode without escalated privileges.
Enabling and disabling offline mode is done via the Keyless tray application accessible on the tray bar:
By default, offline mode is enabled for all users on the specified workstation. To enable offline mode, the user should click on the Keyless tray icon and select "Enable Offline Access".
To ensure maximum security, once enabled, Offline Mode will be available for at at least 7 days and 10 login attempts. Once either of these criteria are met - Offline Mode will be automatically disabled and users will need to re-enable Offline Mode or use the standard "online" login.
Each successful "online login" will reset the counters back to 7 days and 10 login attempts.
If you wish to change the default values of 7 days and 10 login attempts, please reach out to Keyless customer support.
A given user can view the current status of their "offline access" by clicking on the "Show Status" option form the Keyless tray app:
Offline Status: Enabled or Disabled
Offline Sessions Remaining: the number of consecutive offline logins left for the given user on the given workstation. Resets on a successful "online" login.
Offline Time Remaining: the amount of time left for the given user on the given workstation for offline access. Resets on a successful "online" login.
After enabling Offline Mode, follow the steps below to login when offline.
From the Windows lock select the "Offline Login" checkbox (please note that if you are using Password+Keyless mode you will first need to enter your password).
Scan the QR code with your Keyless mobile app by clicking on the image of the QR code next to the account name inside the Keyless app.
Scan the QR code using the Keyless app. This will generate an 8 digit one-time passcode.
Insert the 8-digit passcode into the password input box on your workstation.
Authenticate using the Keyless Authenticator
After you have linked an account, you can authenticate using the Keyless App. To authenticate, the service you linked will send a push notification to Keyless Authenticator on your smartphone.
Authentication is simple and fast, with a consistent user experience no matter which service you are authenticating to.