I have MS RDS and RDP Gateway set up and running smoothly, but I'm wondering if there's a way to allow specific users to connect to their existing on-premises physical workstations instead of just VMs hosted on the session manager. I haven't found much information on how to do this, aside from some unclear suggestions about using RDP through RemoteApps. I'm working with Windows Server 2022, so I'd appreciate any guidance on this!
5 Answers
You can do this! Just take your RD Gateway settings and create an RDP shortcut that points to your workstation's fully qualified domain name (FQDN). As long as your users have the right permissions for both the RD Gateway and their workstations, and if the gateway can reach the workstation on port 3389, it should work fine.
Yes, adding an icon is a good idea! I recommend checking out ChatGPT or similar resources for step-by-step instructions. It can be really helpful if you need a refresher on this.
Yes, you can absolutely set this up! You'll need to create specific Connection Authorization Policies (CAP) and Resource Authorization Policies (RAP) for the RDS Gateway to allow users to access their PCs. Just make sure you've got the right internal and external DNS names configured and that MSTSC (Microsoft Terminal Services Client) is set up correctly for the gateway.
I’ve made some progress and got the icons on the web client page. However, when I try to click on the icon, it attempts to sign in but doesn’t work. MSTSC pops up in the HTML5 page without any details filled in. This seems to be related to pass-through authentication, but I'm not entirely sure it's enabled. Has anyone run into this issue?
Thanks for the tips! But I'm still having trouble finding detailed instructions about implementing this. Also, is there a way to add an RDP connection icon on the RDS Web Client page to make the process easier for users?
From what I remember, the HTML5 RD Web client won’t work for accessing personal workstations; it's meant for applications or session hosts in collections. You would need to use MSTSC or a similar modern remote desktop app to connect. Just ensure your CAP and RAP policies are correctly set and that the workstation has the necessary remote desktop user permissions.