Setup:
Deployment Type: 2012 RD Session based deployment
Domain level: 2012
DNS: separate internal and public domain names
Clients: Windows 8.1 ENT
Session Host: Two RDSH Collections
Broker: Single RDSB server
RD WEB: Single RDGW+RDWEB server in DMZ
SSO setup as per M$ and community KBs
Certificates: RDWEB/RDB/RDGW - Public PKI (remote.contoso.com); RDSH - Self-Signed (*.contoso.local)
Form-based authentications has been replaced with Windows Integrated and Clients successfully logon onto the Remote.Contoso.com without credential prompts.
RemoteApp Client gets configured via a GPO without any issues and Feed syncs fine.
Issue:
Upon attempt to launch RemoteApp either via Web or RemoteApp Client client receive a credential prompt from RD Gateway for authentication: *Type your user name and password to connect to Contoso RemoteApps*
Notes:
The Credential Manager shows no saved credentials for the remote.contoso.com, despite the configured RemoteApp Client. If I manually add an entry under Windows Credentials for Remote.Contoso.com withUSER1`s credentials, then there is no prompt and application launches.
Even if the credentials I enter are for USER2, even then the application is launched under the initialUSER1.