We currently use multiple RD Gateways with Local Connection Authorization Policies (CAP) to control what groups of users have drive, clipboard, and Printer redirection enabled/disabled.
We are looking at implementing Multi Factor authentication (MFA), but all the solutions we have found and tested remove our ability to control what groups of users have the device redirection. Are there any ways to implement MFA and still be able to enable or disable device redirection based on user and/or group membership?