I am working on adding Kerberos authentication support, under windows first. Of the 5 step authentication process defined in the RDP spec I am completing steps 1-4. The 5th step is building the authinfo data, encrypting it and sending it to the RDP server. I am adding the Kerberos support with the end result of allowing authentication using smartcard certificates. So having collected all of the "optional" data required by the TSSmartCardCreds sequence and the TSCspDataDetail sequence, I encrypt the data and included it in the TSRequest.
The problem I am running into is that the RDP server I am submitting this information to (Windows 7 with RDP enabled) keeps dropping the connection with a TLS Alert error. I have captured all the packets using wireshark for an RDP session using MSTSC and using the same smartcard certificate for authentication and have been using that data to somewhat reverse engineer what is required. After I encrypt the authinfo for step 5 I end up sending 24 bytes more than the same packet captured using MSTSC. As a test I changed my code to only sign the authinfo data and interestingly enough the resulting data came out to be the exact same size of the packet from the MSTSC test session. The issue there being that the data was not encrypted; which I think is expected and thus caused a TLS Alert. This issue I am having seems to be one that lives in no mans land, and the MS docs really don't seem that clear and appear to contradict themselves at times. I am wondering if anyone might have either some knowledge they can offer or pointers to any resources that might describe the encryption requirements in more detail than the published RDP spec from Microsoft. Nik Twerdochlib Software Developer BOMGAR | The Box That's Revolutionizing Remote Support(tm) One of the Fastest-Growing Technology Companies in America | Technology Fast 500(tm) What is Bomgar? Find out in 154 seconds<http://www.bomgar.com/overview>. ------------------------------------------------------------------------------ LIMITED TIME SALE - Full Year of Microsoft Training For Just $49.99! 1,500+ hours of tutorials including VisualStudio 2012, Windows 8, SharePoint 2013, SQL 2012, MVC 4, more. BEST VALUE: New Multi-Library Power Pack includes Mobile, Cloud, Java, and UX Design. Lowest price ever! Ends 9/20/13. http://pubads.g.doubleclick.net/gampad/clk?id=58041151&iu=/4140/ostg.clktrk _______________________________________________ Freerdp-devel mailing list Freerdp-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/freerdp-devel
