All systems in lab environment running Windows Server 2012 R2 RTM Evaluation
Hello
I'm new to setting up and managing Remote Desktop Service infrastructure. I am having problems getting Domain Joined clients to connect to RDS hosted sessions with SSO (delegated credentials) when connecting through a RD Gateway.
I have set up the Delegate Credentials GPO, and SSO works fine with a direct connection to the Broker (no RD gateway)
However, when I try to establish a connection via an RD Gateway, I am always requested for one password. Either:
If the "Use my RD Gateway credentials for the remote computer" is selected, the RD Gateway credentials are passed automatically. However, I am prompted for the Broker credentials, even though the connection explicitly details that "Your Windows
logon credentials will be used to connect" (GPO Setting)
If the "Use my RD Gateway credentials for the remote computer" is deselected, then I am prompted for the RD Gateway credentials. When the Gateway credentials are entered, the Broker credentials are then passed automatically, as expected via the explicit"Your Windows logon credentials will be used to connect" (GPO Setting)
Why can't I get both credentials not passed automatically? Is this by design?
------
These are the RDP file settings below, generated and downloaded from RD Web Access. With these settings, the Gateway credentials are being passed automatically but I am still explicitly being requested the BROKER credentials (though I shouldn't because of GPO
delegation - it works when Gateway not being used). Any help would be very much appreciated! Thanks in advance!