Solved

server 2008 TS Web Access/Gateway

Posted on 2010-09-17
5
743 Views
Last Modified: 2013-11-21
I am having some difficulty setting up a test environment utilizing the TS Web Access and TS Gateway on Server 2008 (not R2).  I believe the base of the issue goes to the ports.  A quick breakdown of the situation is this:

I have a TS Gateway setup and showing the TS Apps of another server.  I am using my public IP which already has a webserver on it, so I changed the Website port of the TS Web Access to another port.

All of the above appears to be working fine, however when I go to connect to one of my RemoteApps it is giving me an error indicating the certificate and subject authority name don't match...however the certificate it is providing is for my mail server NOT the self signed cert from the Gateway.

So it appears that it is trying to communicate using either port 80 or 443 and hitting my web and/or email server.

Is there a way to have Gateway use ports other then 80/443?
0
Comment
Question by:americaneldercare
  • 3
  • 2
5 Comments
 
LVL 5

Expert Comment

by:AC_Nova
ID: 33715923
change the bindings for the site in IIS.
0
 

Author Comment

by:americaneldercare
ID: 33715974
To make sure we are both on the same page - I have the main portion of the web page working externally on another port other then 80.  It is when I go to launch the remote app that I am having an issue.  It is giving a certificate mismatch - but is referencing the SSL cert on my main website, not the self signed one on the test gateway server.

Are you indicating I need to adjust the SSL port in IIS and the system will automatically know to reference that other port?  Or were you intending the comment being for Port 80 to allow the TS Web to work on another port?
0
 
LVL 5

Expert Comment

by:AC_Nova
ID: 33716321
I had a similar problem and it was all down to certificates.  The server name must match what is specified in the SSL certificate for the TS Gateway server.  

also

If the Require server authentication check box is selected, consider the following:

If any client computers are running Windows Server 2003 with SP1, Windows Server 2003 with SP2, or Windows XP with SP2, you must configure the terminal server to use a Secure Sockets Layer (SSL) certificate. (You cannot use a self-signed certificate.)

If the RemoteApp program is for intranet use, and all client computers are running either Windows Server 2008 or Windows Vista, you do not have to configure the terminal server to use an SSL certificate. In this case, Network Level Authentication is used.

http://technet.microsoft.com/en-us/library/cc730673(WS.10).aspx
0
 

Author Comment

by:americaneldercare
ID: 33716487
The external test computer I am using is a Windows 7 Enterprise.

The issue with the certificate is slightly different then what you are mentioning - my issue is that when I get the error saying the certificate doesn't match, and View the certificate it is showing the SSL cert assigned to my email server NOT the certificate assigned to my gateway.  If i just change the listening port on the Gateway for SSL will the connection know to use another port? or do I need to specify somewhere that the SSL is on another port?

0
 

Accepted Solution

by:
americaneldercare earned 0 total points
ID: 33773197
I did not see it written on Microsofts website any where...but I was able to find a number of references indicated that the TS Gateway communication (not the IIS portion) is locked to port 443.  
0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Possible fixes for Windows 7 and Windows Server 2008 updating problem. Solutions mentioned are from Microsoft themselves. I started a case with them from our Microsoft Silver Partner option to open a case and get direct support from Microsoft. If s…
A procedure for exporting installed hotfix details of remote computers using powershell
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

828 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question