rd services + rd gateway

Hey all,
I have a TS farm; all of them are server 2008 r2.
My customers are using RDP session in order to login to the TS server.
When I install RD Session Host server, I configure the RCP-TCP Properties using SSL and add my certificate.
When a user is doing a login to the TS server, it's working, and I saw the sentence "securing remote desktop connection"…

So I know it work, but I also have on another server installs Remote Desktop Gateway role.
And it's also working, but do I need it?
The TS is securing itself by my SSL certificate, so basically I have no use at the Gateway? Am I right?


Who is Participating?
NetfloConnect With a Mentor Commented:
Hi Lior,

I would personally recommend using the RDS Gateway where possible, it not only provide secure connectivity via port 443 only to your internal resources. You can centrally monitor and control who can logon to which server, which can audited too.

If you apply a certificate to a RDS host, you will still need port 3389 open to the world. Even if using a single RDS host I would configure it as a gateway and open port 443 only to the world, nice and secure. A little more fiddly to configure, but you know exactly what is going on to which machine via NAP. I would recommend RDG!

Hope this helps.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.