Page Comparison

Enrollment

1. Ensure YubiKey is plugged in.
   
   
   1. Ensure Yubikey has default MGMT pin, if not run the following command:
      ykman piv access change-management-key -m <MGMKEY> -n 01020304050607080102030405060708010203040506070
      
      
2. Remote desktop to enroll02enroll01.ad.rit.edu
   1. Enter enroll01.ad.rit.edu
   
   Image Removed
   1. into the Computer: 
      Image Added
   2. Select Show Options dropdown in the bottom left.
   3. Select the Advanced tab.
   4. Select Settings... from the Connect from anywhere.
      Image Added
   5. Select Use these RD Gateway server settings: and enter "rdgateway.rit.edu" as the Server name. 
      Image Added
   6. Select OK.
   7. Select Connect.
   8. Enter RIT credentials with username MAIN\xxxxxx where "xxxxxx" is your username.
   9. Enter credentials again.
       Image Added

1. Multi-factor with DUO (will do so automatically)
   
   
   

2. Double-click on the Autoenroll.bat
   
   
   
3. Enter PIN 123456 when prompted. When complete, the command prompt window will go away.
   Image Added
   1. Note: 123456 is the default Yubikey PIN.
      
      

      Change PIN (if default)

4. Send Ctrl-Alt-Del through RDP (Ctrl-Alt-End) and click on Change a password
   Image Added
   
   
5. Click on Sign-in options and then Smart card
   Image Added
   
   
6. Enter the default PIN and your new PIN
   Image Added