We strongly recommend two-factor authentication is enable for everyone as it protects you against the most common types of attack and your remote desktop server is publicly available on the internet.
If you’d like this enabled for your users, please get in touch with the Support desk who can talk you through the process.
We use a third-party client to enable two factor authentications on the Windows remote desktop servers, so an additional cost does apply.
In the event a user forgets their phone the Support Desk can generate a one-time bypass code for the user.