I am looking to deploy a new Remote Desktop Services 2008 R2 Farm. This farm would be accessible internally via WEB App without a RD Gateway, and I plan to avoid the need for a RDGW by publishing the RD Web Access page through a Juniper SA SSL VPN appliance similiar to how we deploy Outlook Web Access as a bookmark through the SA to field users.
I have 3 big questions about my scenario I would appreciate your input on;
1. Juniper says RDS RemoteApp is supported on our current firmware version- do you foresee an issues with browsing network drives from within a RemoteApp session using WSAM or JSAM? Should SSO work if I follow these instructions; http://blogs.msdn.com/b/rds/archive/2009/08/11/introducing-web-single-sign-on-for-remoteapp-and-desktop-connections.aspx
2. Do I still need a RDGW if I am requiring all external users sign into the SSL VPN appliance first for authorization? What security holes or functionality can you forsee?
3. I plan to use Clustering on the Connection Broker servers, do you know if clustering is supported with RD Web Access servers, and if I can colocate these roles on the RDCB with clustering?
I plan to have 5 new servers; 2 hosting the RWDA, and RDCB roles clustered, and 3 RD Session Hosts in the farm with standard MS Apps. The target is 100 concurrent users.
Thank you for your assistance!