I have recently set up a 2012 RDS system using multiple servers.
Server01 is the RDWEB/RDGATEWAY server. Server02 is the RDCB server. Servers 03 and 04 are RDSH servers.
I have everything working fine on the inside, but have a couple of problems on the outside. I have the FQDN of the gateway server in DNS both inside and outside. The inside domain does not match the outside. I have a wildcard cert for the outside domain, and applied it to all of the roles in RDS.
Users can connect to the gateway fine, and get no security warnings, because the cert matches. When they launch an app, the ActiveX warning comes up. That's normal. If you continue, another warning comes up because the cert doesn't match. It is showing the internal FQDN of the connection broker server. You can continue, but I'd like to get rid of that. I tried a script, Set-RDPublishedName.ps1, but then you can no longer connect, except on the inside. So I put that back.
The second issue is that the Connect to a remote computer tab isn't working. I get prompted for Gateway credentials, but then it doesn't connect. I fixed the DefaultTSGateway in IIS, but I can only connect to the RDSH servers, nothing else. But it all works on the inside.
I have ports 80,443,and 3391 open on the firewall to the gateway.
So, I am almost completely set up, but need to resolve these last issues. But I don't know what else to try.
Any ideas are appreciated.
Thanks!