What is the best way to:
1) Only have the RSA SID 800 logon option from the windows logon page whens users RDP into a specific server. What Group policies to do i have to have enabled or disabled?
2) Remove the additional challenge for windows logon credentials after being authenticated by RSA.
In the end what i want to achieve is be able to have a user Remote Desktop into server be challenged by RSA for two factor authentication and then have access to the server as per normal.