We are having issues with RemoteApp and user rights assignment. We set the collection level assignment to Domain Users and the Application level assignment in that collection to a specific domain group, but all users who access the environment can still see the app that was supposed to be restricted/hidden. This is in a 2012 R2 environment.
Where do we need to look to see what is going on?