I have the following servers running Windows Server 2012.
RDSH1 = Remote Desktop Session Host 1
RDSH2 = Remote Desktop Session Host 2
RDLIC = Remote Desktop Licensing
RDWAG = Remote Desktop Web Access Gateway
RDCB = Remote Desktop Connection Broker
RDWAG has two IP address
Eth0 = External
Eth1 = Internal
External IP address firewall has port 443 Internal and External traffic open to the world and is a public IP.
On my internal network all clients can connect to the web app and utilize published applications along with VDI pools. Internally everything looks to be working perfect.
The issue is external clients.
External clients are able to connect to the web app and authenticate with no issue. Here comes the butt, after clicking on a published application the user has to reenter their credentials, to launch the application. Even though the credentials are entered correctly the remote desktop program acts like the credentials are incorrect. This does not prompt in error, or create a log in the event file. It instantaneously refreshes the prompt asking to login.
I think this could have something to do with it, but im not sure.
My external domain name is different from my internal domain name.
External = WA.Milk.com
Internal = WAS.Home.local
SSL Name = WA.Milk.com
Other issue, We have a valid SSL Cert from CheapSSL. The SSL Cert imported correctly with no errors. The web app come up with a green lock. checking the Best Practice Analyzer (BPA), we get the following evert. ( The RD Gateway server must be configured to use a valid SSL certificate ) after following the steps from http://technet.microsoft.com/en-us/library/dd320340(v=ws.10).aspx
we still receive this error.
I can give more information if needed.
Thank you all for the help.