Link to home
Create AccountLog in
Avatar of Rick Hobbs
Rick HobbsFlag for United States of America

asked on

Accessing desktops from Internet.

What do I need to do to configure SBS2011 so that users can access https://remote.FQDN/remote and get to their desktops?  It was automatically setup that way in SBS2003, but in SBS2008 on it is not.  I am looking for a step by step explanation.  I currently get to the remote page and get a login but it fails to connect.  I install the cert under Public/downloads/Cert installer, but I get this:
RDP-error-3.JPG
Avatar of David Atkin
David Atkin
Flag of United Kingdom of Great Britain and Northern Ireland image

Hello,

I believe you are getting that error because you have not installed the Servers certificate on the remote client.  You need to navigate to the Server and go to the public folder (\\SERVERNAME\PUBLIC).  Copy the extractor onto a memory stick, take it home and install it onto your client machine.

You cannot download the certificate via the webpage like you could on SBS 2003

Also, make sure that the users have the correct permission to access RWW via the SBS Console (Click on the user and tick the box in the web sites tab for RWW)
Avatar of Rick Hobbs

ASKER

No, I got that error AFTER installing the cert in the public folder.  Here is the login sequence:
RDP-error-4.JPG
Run the Fix My Network wizard and it should create the certs again in the public folder, use the new certs after running the wizard and see what happens.
Your certificate is for remote.domainname.org

You are trying to connect to mail.domainname.org

This is why the certificate is mismatched.

You need to create a new A Record for remote.domainname.org in external DNS (If not already done) and RDP to that so that the certificate subject name matches the TS Gateway address.
I am going to try Works2011's solution first as I am not great with certificate creation, what type, where to locate, etc.  I will let you know if it works or not.
You don't need to create a new certificate.  You just need to remote desktop to:  remote.domainname.com rather than mail.domainname.com.

This needs to be created in external DNS if not done already.  Speak to your domain/website provider.

Best of luck (Y).
Scorpeo,

As you can see by the last jpg I attached, the certificate is looking for the internal domain (.local)  not a valid external domain.  What are the steps to create and associate a valid (in this case .org) domain to the connection?
ASKER CERTIFIED SOLUTION
Avatar of David Atkin
David Atkin
Flag of United Kingdom of Great Britain and Northern Ireland image

Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
See answer
Any update Rickhobbs?
I will be testing and assigning points in the next few days.
That was the exact correct solution.  I didn't do the initial setup and, after discussing it withe the tech that did I got the response "Oh, I never ran that".  Thanks, -Scorpeo-
No problem.  Glad you got it reolved bud.