Hi Guys
I have setup an RDS2012 environment with:
Server1: Connection Broker (Using this as central management)
Server2: Gateway and Web in DMZ
Servers3-8: Session Hosts
Certificates: 1xWildcard with *localdomain.co.uk installed for all internal servers (Connection Broker SSO and Connection Broker Publishing). 1xSAN Cert with Web Access URL remote.externaldomain.co.uk and Alternate name for external gateway address gw.externaldomain.co.uk.
With this configuration last week internally I was able to log into Web Access and fire up a RemoteApp no problem. Over the past few day I have been tinkering with Firewall Ports and NPS/Gateway to allow access remotely and since making some changes I now cant access RemoteApps externally or internally. I get the error:
"Your Computer cant connect to the remote computer because the Remote Desktop Gateway server is temporarily unavailable."
The RemoteApp trusted publisher box has:
Publisher: *localdomain.co.uk (Wildcard cert)
Remote computer: Connection Broker FQDN
Gateway Server: gw.externaldomain.co.uk (covered by SAN cert)
Its not firewall related as I have temporarily allowed all traffic through WAN-DMZ and DMZ-LAN. I used this guide here to configure the Gateway with a central NPS server I have in my network. I have tried turning the RD CAP Store on the gateway back to local server running NPS but this doesn't fix it. The user is a member of an AD group defined in the RAP that has access to the network Resource Group which contains all RDS servers.
If I try and access via the internal FQDN of Web Access (I assume it doesn't need to go via gateway then) I get the same problem.
Would anyone have any suggestions on how I can trouble shoot this?
Thanks