Environment details:
- Two Windows Server 2012 R2 DCs
- Windows Server 2012 R2 server with all RDS roles installed
- Trusted certificate has been deployed on the server
- Windows 8 Embedded
- RDP protocol being used: 8.0
- SSO GPO has been created and linked to the top level of the domain and is enforced
- GPO setting: Computer Configuration -> Policies -> Administrative Templates -> System/Credentials delegation -> Enabled -> TERMSRV/fqdn.domain.com
- RDS web feed GPO has been created and linked to the OU containing the users that need this subscription.
- GPO settings: User Configuration -> Policies -> Administrative Templates -> Windows Components -> Remote Desktop Services -> RemoteApp and Desktop Connections -> Enabled -> https://fqdn.domain.com/rdweb/feed/webfeed.aspx
What works correctly:
- Users get the remote apps on the Metro Start screen.
- No certificate warnings occur.
- Gpresult /r shows that the GPOs referenced above are getting applied.
Issues:
While users do get the web feed apps, they get prompted for two things when they launch an RDS app:
- "This RemoteApp could harm your computer....". The users have the option to say "Don't warn me again" and connect, but I'd like this to not occur at all if possible.
- They get prompted for a user name and password. This means SSO is not working.
DuRand Bryant