Configuring the RD Gateway and RDC Client

Configuring the RD Gateway

  1. Now the RD Gateway is installed, go to Start > Administrative Tools > Remote Desktop Services > Remote Desktop Gateway Manager.
  2. Right click on the RD Gateway server within the RD Gateway Manager console and select Properties.
  3. Select “Create a self-signed certificate” then click “Create and Import Certificate”. You will then bepresented with the following :

    RD Gateway - Create a self-signed certificate

  4. Make sure that the certificate name is the internet DNS (domain) name that resolves to the internet IP address of the RD Gateway server. The firewall will need to allow communication to the server on TCP port 443.
  5. Tick “Store the root certificate” and choose a file location to save the certificate. For example: C:\rd-cert.cer

As this is a self-signed certificate, you will need to import the certificate to your machine that you are accessing the RD Gateway from. To do this, follow these steps:

  1. From the client machine accessing the RD Gateway, right click on the certificate file and click “Install Certificate”
  2. Click Next then select “Place all certificates in the following store”
  3. Browse to “Trusted Root Certification Authorities”, then click Next.
  4. Click Finish

Note: You will need to ensure that the internet (DNS) host name can be resolved to the internet IP address of the RD Gateway server, so make sure that this is the case. This domain name must match the certificate name (E.g.

Configuring the Remote Desktop Connection Client

  1. Launch the Remote Desktop Connection client.
  2. Select the “Advanced” tab and click “Settings”.
  3. Select “Use these RD Gateway server settings” (Windows XP will be “Use these TS Gateway settings”)
  4. Enter the server / host name (E.g. of your RD Gateway server
  5. Optional: Select “Use my RD Gateway credentials for the remote computer”
  6. Click OK.
  7. Finally, under the “General” tab enter the local IP address or server name of the machine you wish to connect to.

Your connection will be tunnelled over SSL, providing your firewall configuration permits TCP port 443 from the internet to your RD Gateway server and TCP port 3389 from the RD Gateway server to your internal network.


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s