Hello,
I'm using these groups:
- in domain.tld is a local group "RDP-Users" wich allows access to the RDP-Server and the RDP-GW (both server are in this domain too)
- in sub.domain.tld is a global group "Department A"
I can connect to the RDP-Server directly with a user from sub.domain.tld. This works as expected. But if I try to use the RDP-GW, I get an error that the user has no permission to use it. If I convert the scope of "RDP-Users" to universal it works. The same happens, if I add the users from sub.domain.tld directly to the group "RDP-Users".
Why can't the RDP-GW handle the permission if the group scope is local?
Regards,
Dennis