How do you configure RSA SecurID authentication when using a Microsoft Remote Desktop Services gateway? Essentially, instead of installing the Auth agent on dozens of target computers, can we not configure 2FA to occur on the RDS (formerly Terminal Server Gateway) machine for all passthrough RDP connections?