Server 2012 R2 Domain with Two-Factor authentication required
Windows 7 Enterprise workstations
We are able to successfully authenticate to 2012 R2 servers via (Remote Desktop two-factor authentication via USB tokens/Smart Cards with certificates from our CA).
The issue is after the RDP session has keyboard locked, we are unable to immediately log back in to the server with the Smart card logon, unless we unplug our USB/Smart Card tokens and plug them back in to our workstations.
I am under the impression that we need to possibly make a setting change in a GPO for the servers.
Do we need to look into the setting for: AllowFreshCredentialsWhenNTLMOnly
Thanks.
JCashon