Issue with YubiKey and audio device mapping in AWS WorkSpaces (DCV)

Question

Hello,

When I connect to my AWS WorkSpace using the AWS WorkSpaces client (version 5.30.0.5991) and my YubiKey is plugged in, I can no longer access the YubiKey from my MacBook Pro (macOS Sequoia 15.7.1). In PCoIP, this wasn’t a problem; now that we’ve moved to DCV, it seems different.

I also notice that audio is automatically mapped to the target WorkSpace. I can’t find any setting in the client app to disable automatic mapping of host devices (YubiKey, audio, etc.). How can I resolve this? Is there a client config file or option to tune this behavior?

Regards,

Mike

Kidd Ip · Answer

Worth to take a look at the following:

1. Disable USB Redirection via Group Policy (Windows WorkSpace)
If you manage the WorkSpace itself:
•	Use Group Policy Editor to disable USB redirection: 
•	Computer Configuration → Administrative Templates → DCV → USB Device Redirection
•	You can block specific device classes or vendor IDs (e.g., YubiKey).
2. Modify Audio Redirection Settings
DCV audio redirection is enabled by default. To disable:
•	On the WorkSpace, edit the DCV server config: 
o	File: C:\Program Files\NICE\DCV\Server\conf\dcv.conf
o	Add or modify: 
o	audio-enabled=false
o	Restart the DCV service.
3. Client-Side Limitations
•	The macOS WorkSpaces client does not expose settings to disable device redirection.
•	There is no config file or toggle in version 5.30.0.5991 to control this behavior.
4. Use a Local Session or Alternative Auth
•	If YubiKey is needed locally (e.g., for browser-based MFA), consider: 
o	Disconnecting from WorkSpaces temporarily
o	Using a different authentication method while connected

Issue with YubiKey and audio device mapping in AWS WorkSpaces (DCV)

Add your answer

Relevant content