Solved

server 2008 TS Web Access/Gateway

Posted on 2010-09-17
5
740 Views
Last Modified: 2013-11-21
I am having some difficulty setting up a test environment utilizing the TS Web Access and TS Gateway on Server 2008 (not R2).  I believe the base of the issue goes to the ports.  A quick breakdown of the situation is this:

I have a TS Gateway setup and showing the TS Apps of another server.  I am using my public IP which already has a webserver on it, so I changed the Website port of the TS Web Access to another port.

All of the above appears to be working fine, however when I go to connect to one of my RemoteApps it is giving me an error indicating the certificate and subject authority name don't match...however the certificate it is providing is for my mail server NOT the self signed cert from the Gateway.

So it appears that it is trying to communicate using either port 80 or 443 and hitting my web and/or email server.

Is there a way to have Gateway use ports other then 80/443?
0
Comment
Question by:americaneldercare
  • 3
  • 2
5 Comments
 
LVL 5

Expert Comment

by:AC_Nova
Comment Utility
change the bindings for the site in IIS.
0
 

Author Comment

by:americaneldercare
Comment Utility
To make sure we are both on the same page - I have the main portion of the web page working externally on another port other then 80.  It is when I go to launch the remote app that I am having an issue.  It is giving a certificate mismatch - but is referencing the SSL cert on my main website, not the self signed one on the test gateway server.

Are you indicating I need to adjust the SSL port in IIS and the system will automatically know to reference that other port?  Or were you intending the comment being for Port 80 to allow the TS Web to work on another port?
0
 
LVL 5

Expert Comment

by:AC_Nova
Comment Utility
I had a similar problem and it was all down to certificates.  The server name must match what is specified in the SSL certificate for the TS Gateway server.  

also

If the Require server authentication check box is selected, consider the following:

If any client computers are running Windows Server 2003 with SP1, Windows Server 2003 with SP2, or Windows XP with SP2, you must configure the terminal server to use a Secure Sockets Layer (SSL) certificate. (You cannot use a self-signed certificate.)

If the RemoteApp program is for intranet use, and all client computers are running either Windows Server 2008 or Windows Vista, you do not have to configure the terminal server to use an SSL certificate. In this case, Network Level Authentication is used.

http://technet.microsoft.com/en-us/library/cc730673(WS.10).aspx
0
 

Author Comment

by:americaneldercare
Comment Utility
The external test computer I am using is a Windows 7 Enterprise.

The issue with the certificate is slightly different then what you are mentioning - my issue is that when I get the error saying the certificate doesn't match, and View the certificate it is showing the SSL cert assigned to my email server NOT the certificate assigned to my gateway.  If i just change the listening port on the Gateway for SSL will the connection know to use another port? or do I need to specify somewhere that the SSL is on another port?

0
 

Accepted Solution

by:
americaneldercare earned 0 total points
Comment Utility
I did not see it written on Microsofts website any where...but I was able to find a number of references indicated that the TS Gateway communication (not the IIS portion) is locked to port 443.  
0

Featured Post

What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

Join & Write a Comment

Suggested Solutions

Sometimes drives fill up and we don't know why.  If you don't understand the best way to use the tools available, you may end up being stumped as to why your drive says it's not full when you have no space left!  Here's how you can find out...
Meet the world's only “Transparent Cloud™” from Superb Internet Corporation. Now, you can experience firsthand a cloud platform that consistently outperforms Amazon Web Services (AWS), IBM’s Softlayer, and Microsoft’s Azure when it comes to CPU and …
This tutorial will show how to configure a new Backup Exec 2012 server and move an existing database to that server with the use of the BEUtility. Install Backup Exec 2012 on the new server and apply all of the latest hotfixes and service packs. The…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now