Hello,
We are deploying a new RDS environment. As a brief overview of our setup:
- 1 dedicated server for the broker, gateway, session host, and licensing (for 10 users or less)
After reading numerous articles, i'm trying to figure out the certificates. I know I will need one 3rd party cert for the Connection Broker, Web Access, and Gateway roles to allow users to access the resources outside the network. My questions are as follows:
- When obtaining a wild card cert, do I need to have the internal FQDN of the server, the external FQDN, or both listed in the cert?
- For the external FQDN, can i choose whatever I want (i.e. RD.COMPANY.COM) and then enter that in the internal DNS? Or external only? (sorry not a DNS guru)
- For the RD Web Access URL, do I need to change that to my external FQDN (i.e. RD.COMPANY.COM) or leave as is?
My thinking is I need to obtain a wild card cert with an external FQDN (i.e. RD.COMPANY.COM). In my external DNS, setup that FQDN with a external IP address and allow that thru my firewall to the internal IP. Am I on the right track? Thanks for any assistance!