I have Windows Server 2012 R2 (single server hosting all the roles for RDS). I'm using RDS for publishing RemoteApps for both internal and external users. External users connect to remote.company.com and I have certificate from public ca (issued to remote.company.com). Active Directory is company.local.
When external users connect through the rds gateway and run remoteapp they receive this warning message that is caused by fqdn mismatch
I tried to use this script to change fqdn to match remote.company.com and it does that but after that external users cannot open remoteapps anymore. Internally they work.
https://gallery.technet.microsoft.com/Change-published-FQDN-for-2a029b80
I get this error in eventlog:
The user "COMPANY\username", on client computer "xx.xx.xx.xx", did not meet resource authorization policy requirements and was therefore not authorized to resource "remote.company.com". The following error occurred: "23002".
If I change the published fqdn back to rds.company.local remoteapps starts to work again but with certificate error.
How can I fix this?