2.8.3. Procedure – Connecting to a server through PSM using an RD Gateway


This procedure illustrates what happens when a client connects a server through PSM using a Remote Desktop Gateway (or RD Gateway), and how the different configuration options and policies of PSM affect this process. For details on the configuration process, see Procedure 10.6, Using PSM as a Remote Desktop Gateway.


  1. The client connects to port 443 of the Remote Desktop Gateway configured in the Remote Desktop software. The address of the Remote Desktop Gateway is an alias IP address of PSM. To process the connection request, PSM must have a Connection policy that is configured to handle RDP connection requests on the alias IP, and that has the Act as a Remote Desktop Gateway option enabled.

  2. The client authenticates on Remote Desktop Gateway (that is, on PSM). Technically, this is an inband gateway authentication on the Domain Controller of PSM's domain (PSM must be the member of a domain, for details, see Procedure 10.3.1, Network Level Authentication (NLA) with domain membership). The username used in this authentication step is referred to as the Gateway username and is used to determine the Gateway group memberships of the user.

  3. The client tries to connect to the server. From this point on, this connection is processed as described in Procedure 2.8.2, Connecting to a server through PSM using RDP.