RDWeb External Access Failing

I just installed a Server 2012 R2 RDS deployment.  I have published Apps and they are all working internally.  Externally they are failing.  I have installed ad configured the RD Gateway, as well as a 3rd party SSL certificate.

I am assuming I have a firewall issue.  I have opened port 443 ONLY so far.  Do I need more ports open to allow remote Apps externally?
BSModlinAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Cliff GaliherCommented:
Not with RDGateway. 443 is all you need from external to the RDGateway server.
0
BSModlinAuthor Commented:
So what do you think I am missing??
0
Cliff GaliherCommented:
URL or SSL issues most likely. With no errors, it is tough to be more specific.
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

BSModlinAuthor Commented:
My internal FQDN is server1.ABC.local and my external name is apps.ABC.com.  My SSL cert matches the external name.  Is that a supported configuration?
0
Cliff GaliherCommented:
As long as you configured RDGateway that way via server manager.
0
BSModlinAuthor Commented:
Can you provide a link so I can verify that? Not sure where to check.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
BSModlinAuthor Commented:
Ok... I have managed to change the URL to the external FQDN with a powershell script I found online.

Now I believe I have a permissions issue....  When I access the Remote App site internally it works, but once logged into the web page... and I launch an app it prompts me for credentials again.. but then the app launches....

When I go to do the same thing externally, the same thing happens but when I put the credentials in to launch the app it fails and gives the attached error message....

What could this be?
Issue.PNG
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2012

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.