Good afternoon,
I have a complicated RDS 2016 setup. And it is almost one of those Microsoft questions you get on your exam.
Use case:
Internet users connect from the internet over a vpn to a vdi of company A. These vdi's run Windows 7.
From there it is possible to reach a RDS gateway in a separated network from company B, that is not connected to the internet. At this moment they cannot connect to this RDS deployment.
The deployment is as follow:
RDS Server 1: RDS host
RDS Server 2: RDS host
RDS Server 3: RDS Gateway/broker and web server
RDS Server 4: License server and profile store.
This RDS deployment in the network of company B uses a certificate signed by a CA of company A so that the vdis can trust the certificate. But this rds broker is from company B and his CA does not trust this certificate (Is that a problem?)
The network of the 2 companies are fully separated. They only share 1 thing and that is 1 subnet to connect to each other (directly without internet)
Users that try to connect from the vdis from company A get the following error when they try to connect to the RDS gateway of company B.