Good afternoon
I hope you are well.
We've deployed PAM RDP to some application management desktops. What we have found is that when Symantec IGA Credential Provider is installed and configured, the desktop requires a second round of authentication. This is to say, PAM injects the credentials, and the Windows desktop login screen appears immediately the cert accepted and the session is authentication, requiring further (second) authentication.
When IGA CredProvider is installed, it also affects "normal windows" based (MS) RDP sessions. Requiring the user to authenticate twice, once on the RDP credential pop up, and again on a Windows desktop login screen as in PAM RDP. Removing or disabling IGA CredProvider results in the MS RDP working, but the PAM RDP still has an issue.
Both the MS and PAM RDP sessions work as expected when IGA CredProvider is not installed.
Regards
Muzi Lubisi