+ Post New Thread
Results 1 to 3 of 3
Enterprise Software Thread, Remote Desktop Services - Certificate Confusion in Technical; Hello Everyone! We are trying to setup an RDS Farm and are confused with what certificates we need to use. ...
  1. #1

    Join Date
    Jan 2012
    Posts
    108
    Thank Post
    0
    Thanked 1 Time in 1 Post
    Rep Power
    0

    Exclamation Remote Desktop Services - Certificate Confusion

    Hello Everyone!

    We are trying to setup an RDS Farm and are confused with what certificates we need to use.

    Our setup is as follows:

    Server 1 - Internet Facing (remote.domain.com (joined to domain.local))
    - RD Gateway
    - RD Web Access
    - RD Licensing
    - RD Connection Broker

    Server 2 - Non-Internet Facing (Session1.domain.local)
    - RD Session Host

    Server 3 - Non-Internet Facing (Session2.domain.local)
    - RD Session Host

    The confusion lies in signing the remoteApps. As they reside on a server that has a .local domain how can I get these to be signed by a Public Certification Authority?

    We are currently looking a purchasing a Wilcard certificate - *.domain.com and obviously this cannot be used for the session hosts.

    So my final question is how can I sign these remoteApps so that they can be used externally without any issues.

    I hope that the above makes sense!

    Thanks in advance.

    J.Worth

  2. #2


    Join Date
    Oct 2006
    Posts
    3,409
    Thank Post
    184
    Thanked 356 Times in 285 Posts
    Rep Power
    148
    You can sign the hosts with the wildcard cert, RD doesn't care that they have the wrong domain name.

    On your DNS server create a zone for domain.com and add them in there as session1.domain.com session2.domain.com and both session1 and 2 as farm.domain.com
    Now x.domain.com and x.domain.local are the same hosts.
    Point your gateway to farm.domain.com and configure any options on the RD host using .domain.com in place of .domain.local

    Now all PCs in the chain look like they are called x.domain.com regardless of whether they are really .local
    Last edited by j17sparky; 11th July 2012 at 12:47 AM.

  3. #3

    Join Date
    Jan 2012
    Posts
    108
    Thank Post
    0
    Thanked 1 Time in 1 Post
    Rep Power
    0
    Hello,

    Thanks for your quick reply. In the back of my mind this is what I would have done, but just wanted to make sure it was the right way to proceed with this!

    Thanks again!

SHARE:
+ Post New Thread

Similar Threads

  1. Remote Desktop Services
    By pritchardavid in forum Licensing Questions
    Replies: 5
    Last Post: 12th October 2010, 05:20 PM
  2. Now BECTA has gone, do we NEED to have a VLE? Remote Desktop Services instead?
    By Ben_Stanton in forum Virtual Learning Platforms
    Replies: 11
    Last Post: 11th June 2010, 01:35 PM
  3. Remote Desktop Services - SSO Problems
    By ginge in forum Thin Client and Virtual Machines
    Replies: 0
    Last Post: 27th May 2010, 09:44 AM
  4. Remote Desktop Services - Mandatory Profiles
    By mmoseley in forum Windows Server 2008 R2
    Replies: 4
    Last Post: 15th March 2010, 08:31 AM
  5. [Windows Software] Server 2008 R2 Remote Desktop Services
    By HMCTech in forum Licensing Questions
    Replies: 1
    Last Post: 4th November 2009, 10:49 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •