2012 RDS remote connections require two authentications
Posted on 2014-04-17
I am currently running a pilot environment for a 2012 RDS Farm, the environment consists of one RDS Connection Broker and two RDS Session Host Servers
When i connect from my desktop to the broker using mstsc i am asked to authenticate in a Windows Security pop-up window (domain\user autofilled) i put in my password and the connection is made. I am then greeted with the 2012 login page (domain\user auto filled again) and i have to put in my password to logon..
Standard users piloting this are also getting asked to sign in twice but these are using a pre-made RDP shortcut config below
screen mode id:i:1
allow font smoothing:i:0
allow desktop composition:i:0
disable full window drag:i:1
disable menu anims:i:1
disable cursor setting:i:0
full address:s:<connection broker server name>
prompt for credentials:i:0
negotiate security layer:i:1
shell working directory:s:
use redirection server name:i:1
loadbalanceinfo:s:tsv://MS Terminal Services Plugin.1.<Collection name>
When this is used the 2012 logon prompt is shown and users have to enter their password and then the logon prompt comes up again, its like the broker is requesting a logon before directing to the session hosts which then also ask for a login..
Within the RDS Deployment Properties i have attached a wildcard cert for the domain which is trusted by all clients and the deployment is showing as 'trusted'