Solved

Changing the port for RDS on windows server 2012 R2

Posted on 2015-02-20
3
181 Views
Last Modified: 2015-03-15
Dear Experts,

I'm having issues configuring my Windows 2012R2 RDS roles.  I've installed and configured the roles in their default session-based capacity.  Access from LAN stations is fine. However, configuring access for remote users is a bit of a pig.

Its a single server (domain member) that has RD Web Access, RD Gateway, RD Licensing, RD Connection Broker and I have added the RD Host server and created a collection.

This site has only one public static IP address and exchange is using port 443 so I changed the transport settings in the RD Gateway to use port 444. I have also installed an SSL cert from godaddy.

When I visited the rdweb site from an external location, I could logon fine (as admin) and browse around.  There are 3 apps published by default (calc, paint and wordpad) but when I click on any of these, I get a message stating that the server could not be found. So I googled around and made the following changes:
- in IIS, changed the DefaultTSGateway to point to the external FQDN
- in the RD Gateway settings, added the internal and external FQDN of the RDS server into the server farm (I had to create a split dns entry internally for this)
- Use windows powershell to perform Set-RDSessionCollectionConfiguration –CollectionName "YourCollectionName" –CustomRdpProperty "gatewayhostname:s:rdg.yourdomain.com:444

Once these steps were completed, I could logon to an RDP session. I had to configure the RDC to use the RD Gateway server settings with the new port 444.

So I re-published the calculator app and this time when I click on it, it brings me through logging on but then fails stating that the name on the certs do not match. I click to view the certificate and am presented with the exchange certificate details!!  

It would appear that, at some level, it is communicating on port 443 even though I have changed the transport to use port 444.

Because I have had to make so many little changes that seem to me to be fixes, the whole thing feels dirty.

Any experts with any advice would be appreciated.

Thanks
0
Comment
Question by:tech53
  • 2
3 Comments
 
LVL 78

Expert Comment

by:David Johnson, CD, MVP
ID: 40622516
I use a wildcard certificate myself to not have this potential problem. And both can be on port 443 just using different host headers.
0
 
LVL 1

Accepted Solution

by:
tech53 earned 0 total points
ID: 40656180
I have ordered another static IP from my ISP and will use that on 443.
0
 
LVL 1

Author Closing Comment

by:tech53
ID: 40666003
I found this route to cause least trouble.
0

Featured Post

Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Like many organizations, your foray into cloud computing may have started with an ancillary or security service, like email spam and virus protection. For some, the first or second step into the cloud was moving email off-premise. For others, a clou…
I don't know if many of you have made the great mistake of using the Cisco Thin Client model with the management software VXC. If you have then you are probably more then familiar with the incredibly clunky interface, the numerous work arounds, and …
In this Micro Tutorial viewers will learn how to use Boot Corrector from Paragon Rescue Kit Free to identify and fix the boot problems of Windows 7/8/2012R2 etc. As an example is used Windows 2012R2 which lost its active partition flag (often happen…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…

932 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now