How to setup RD Gateway for Windows Server 2016

Quick setup guide for Windows Server 2016:

  1. Join the Windows 2016 server to the Active Directory domain.
  2. Add the Remote Desktop Services role.
  3. Create a Connection Authorization Policy. This policy specifies which groups are allowed to access this Remote Desktop Gateway.
  4. Create a Resource Authorization Policy. This policy specifies which servers are allowed access by which groups.
  5. Purchase an SSL Certificate from a public Certificate Authority like Comodo, DigiCert, Godaddy etc.
  6. Apply the SSL Certificate to the Remote Desktop Gateway.
  7. Accept the default Remote Desktop Gateway TCP Port of 443 or change it to a port of your choosing.
  8. Test the Remote Desktop Connection to a server behind the Remote Desktop Gateway DIRECTLY from the Remote Desktop Gateway server. This is to ensure that there is connectivity from the Remote Desktop Gateway to the servers that clients will need to connect to.
  9. Modify or create your firewall Rule to allow the Remote Desktop Gateway port to the Remote Desktop Gateway server.
  10. Test the Remote Desktop Connection to a server behind the Remote Desktop Gateway from the internet. You need to configure the Remote Desktop Client with the Remote Desktop Gateway address and port number.

Configuring the RD Client to use the Remote Desktop Gateway

  1. Verify the external server name or IP address and Port for the Remote Desktop Gateway
  2. Install an SSL Certificate on the Remote Desktop Gateway
  3. IF USING A SELF-SIGNED SSL CERTIFICATE: Trusting the Self-Signed SSL Certificate on the client. This step is optional on Mac clients, but MUST be done on Windows PCs to connect.
  4. Configuring the Remote Desktop client on the Mac AND/OR configuring the Remote Desktop client on Windows.

Also see our guide on how to configure RD Gateway for Windows 2008

Cyberon Security also provides full network security and monitoring.

References

  1. https://turbofuture.com/computers/How-To-Setup-a-Remote-Desktop-Gateway-Windows-Server-2016
  2. https://docs.microsoft.com/en-us/windows-server/remote/remote-desktop-services/welcome-to-rds
  3. https://techcommunity.microsoft.com/t5/Enterprise-Mobility-Security/RD-Gateway-deployment-in-a-perimeter-network-Firewall-rules/ba-p/246873
https://www.cyberonsecurity.no/secure-infrastructure-management/
https://www.cyberonsecurity.no/soc/
Privacy Preferences
When you visit our website, it may store information through your browser from specific services, usually in form of cookies. Here you can change your privacy preferences. Please note that blocking some types of cookies may impact your experience on our website and the services we offer.