The setup is a Windows AD client computer requires 2FA for login. This is enforced by requiring smart card login on the computer.
The issue is remote support being able to pass a smart card for UAC authentication or even unattended login.
Does anyone have a method of enforcing 2FA by the user while still being able to support the system remotely?
as far as i know now, connectwise and solarwinds don’t have an option to pass usb smart card. Solar winds does have a rdp option but that’s not exactly a full fix.