On this page, we will walk you through the process of configuring the Remote Desktop Gateway (RDG) service on a domain on platforms running Windows Server in great detail.
What is RDG
Access to remote desktops can be obtained with Microsoft’s RDP program (Remote Desktop Protocol). The RDG (Remote Desktop Gateway) service is utilized in order to establish a connection that is safe. One of its distinguishing features is that it operates through an HTTPS connection. By doing so, a dependable communication channel is established, which in turn ensures that the user is afforded the necessary level of protection. As a consequence of this, there is no requirement to utilize the services of a third party in order to set up a VPN tunnel.
Administrators make connections for users in the organization based on the roles that those users play in the business using the functions of access control to network resources. RDG makes it possible to establish a connection not only to a single subnet, but also to multiple subnets that are hidden behind a NAT or firewall. The interface of the gateway is uncomplicated and designed with the user in mind, and it offers a variety of customizable settings. An inexperienced administrator will have no trouble figuring out the settings and developing the appropriate connection templates in accordance with the organizational structure inside the company.
Setting roles
We launch the “Server Manager”, go to the “Add role” tab on the right side:
Screenshot #1. Selecting an option.
Let’s use the first paragraph as an example:
Screenshot #2. Installation selection.
Next, the utility will ask you to specify the server for which the role is being issued. Select from the list, click “Next”. At the next stage, a list of available roles for the server will appear. For example, we put down the “Remote Desktop Service”:
Screenshot #3. Activate the role.
After clicking the “Next” button, information about the selected role will be displayed on the screen. We agree and move on to the next step. There is now an added feature in the Role Server section. We go into it and mark the options that the administrator needs. For example, let’s activate RDG:
Screenshot #4. Choice of additional functions.
The configuration wizard checks the selected role and compatibility with the server OS. If additional components need to be installed, the workspace with the selected components will automatically open. For RDG to work, web administration services with a full set of software tools must be installed in the operating system:
Screenshot #5. Choice of additional components.
It is recommended to leave the selected services by default. Click “Next” to confirm the installation.
Access to resources
After installing the selected role, go to the main window of the “Server Manager”. Select the “Tools” section and proceed to setting up the RDG. A new work window (RD Gateway Manager) will open. In it, go to the tab with the server name, then select “Policies” and configure authorized connections. Click the “Wizard” button to open the setup wizard:
Screenshot #6. Create a policy.
The installer will offer a choice of 3 items. Leave the first option active:
Screenshot #7. Configuration selection.
Give the new template a name and click Next. The next step is to select the authentication method and the list of users who will have access to the policy. Authorization is permitted by password or smart card, or both. We leave only the password. Next, click the “Add group” button and add data to the field:
Screenshot #8. Choice of authorization and users.
Next, we differentiate access to network resources to which users will connect via Remote Desktop Gateway:
Screenshot #9. Resource selection.
Let’s take the first point as an example. Click “Next”. Now you need to set the timeout values for network resources. We supply according to requirements. A window with the configured template will appear on the screen. If the information is correct, proceed to the next step.
The configuration wizard will ask you to specify an authorization policy for network resources. First, let’s come up with a name for the configuration. Then we add user groups that will connect:
Screenshot #10. Group selection.
Now select a resource group:
Screenshot #11. Selecting a resource group.
The setup wizard will ask you to specify the port number for the connection. If there are no special requirements, we leave the default – 3389. After clicking “Next”, information about the created authorization policy will appear on the screen. If everything is correct, we complete the configuration.
Installing the SSL certificate
For RDG access to be active, a certificate must also be generated. In the RDG Manager working window, go to the “Server Name” section. Through the context menu, open the item “View or change certificate properties”. In the window that opens, switch to the SSL tab. There are 3 creation options available. Select the item marked in red in the screenshot:
Screenshot #12. Choice of method.
Now we write the name of the certificate and the path where it will be stored:
Screenshot #13. Import.
Click “OK” to generate. As a result, the manager’s workspace looks like this:
Screenshot #14. General information.
To increase the level of security, it is recommended to change the default port for connecting via Remote Desktop Protocol. Open the “Actions” section in the RDG Manager, the “Properties” item. Go to the Transport Properties tab. In the field marked in red, change the value:
Screenshot #15. Change port.
Confirm the changes, close the window.
How to connect
Now you need to configure the connection via RDP. Press the key combination Win + R, enter the command mstsc.exe. In the window that opens, click “Settings”:
Screenshot #16. RDP setup.
In the field marked in red, we write the server address, and after a colon at the end we mark the port number. Click “OK”.
Now go to the “General” tab. We register the domain name and user:
Screenshot #17. domain and user.
The setup wizard will ask you to provide a password for the account name. We enter it. Configuration completed.
Welcome to the world of DomainRooster, where roosters (and hens) rule the roost! We're a one-stop shop for all your entrepreneurial needs, bringing together domain names and website hosting, and all the tools you need to bring your ideas to life. With our help, you'll soar to new heights and hatch great success. Think of us as your trusty sidekick, always there to lend a wing and help you navigate the sometimes-complex world of domain names and web hosting. Our team of roosters are experts in their fields and are always on hand to answer any questions and provide guidance. So why wait? Sign up today and join the ranks of the world's greatest entrepreneurs. With DomainRooster, the sky's the limit! And remember, as the saying goes, "Successful people do what unsuccessful people are not willing to do." So don't be afraid to take that leap of faith - DomainRooster is here to help you reach for the stars. Caw on!
