I am trying to set up this scenario, and with the most popular SSO post, it doesn't seem to work/isn't meant for this purpose.
A user connects to TS Web Access. They are prompted for their username/password using Forms Authentication (like normal). They are connecting from a non-domain computer. They enter their credentials, and are given a list of RemoteApps to run. When they click on an app, they are given a certificate warning (which is OK) and then another certificate warning (also OK) and are connected to the app using the Forms credentials they entered earlier.
That is the IDEAL scenario. This is what I am experiencing. A user logs in with their account to the form. They connect to the RemoteApp and are prompted for another set of credentials. If I enable SSO, it passes the user's currently logged in (Windows) credentials instead of the form credentials. I also have to change a policy setting on the local box in order to get SSO to work (The delegate credentials one).
So, question 1: Is this even possible?? And question 2: How do I get the Forms credentials to pass to the RemoteApp session?