I am attempting to get Single Sign On to work with an RDS 2012 Session Host configuration. I currently have Single Sign on configured through the RD Web access page to use the users current logon credentials to give them access to the RD Web Portal. However, when they log on, and see the Session Host collection, they are prompted with the following pop up asking for credentials:
Image may be NSFW.
Clik here to view.
I'd like this setup to be as easy for the end users as possible, and while asking them for credentials here seems trivial, if I can avoid this, I'd prefer to have their Windows logon credentials to pass through directly to the Session Host. Is this even possible? To throw another curveball into this, all of the clients that are going to be connecting to these Session Hosts are Windows Vista Business machines. Can anyone lead me in the right direction here?
RDS01 and RDS02 - RDS Web Servers (Web Access page set up to allow load balancing via our hardware LB)
RDSCB01 and RDSCB02 - RDS Connection Brokers with SQL configuration for HA
RDSSH01 - 06 - RDS Session Hosts
RD Web and RD Connection brokers have been configured with certificates from our PKI with SANs in certs......
I have configured a GPO for SSO and applied it to machines at Computer Configuration\Administrative Templates\System\Credentials Delegation - "Allow Delegating Default Credentials" and set up the names of the Session Hosts as TERMSERV\servername
I've followed the instructions on setting SSO through the RD Web Access page from the Web.config file.......also found here:
http://www.anilerduran.com/index.php/2012/sso-single-sign-on-thoughts-on-rds-remote-desktop-services-2012/
Any help would be much appreciated!
Thanks! Nate
