Configure the Remote Desktop Web Access Server to Allow Access from the Internet
Applies To: Windows Server 2008 R2
To allow users to access the RD Web Access server from the Internet, you can also deploy RD Gateway. A recommended configuration is to place both the RD Gateway server and the RD Web Access server in the perimeter network, with the Remote Desktop Session Host (RD Session Host) servers that host RemoteApp programs behind the internal firewall.
For more information about how to deploy RD Gateway and about how to make RemoteApp programs available from the Internet, see Checklist: Make RemoteApp Programs Available from the Internet.
After you have deployed RemoteApp programs, RD Gateway, and RD Web Access, you must configure your firewall to allow Windows Management Instrumentation (WMI) traffic from the RD Web Access server to the RD Session Host server.
Additionally, verify that the RD Web Access Web site is configured to use Forms Authentication.
By default, Forms Authentication is enabled for the RD Web Access Web site.
To verify that Forms Authentication is enabled
On the RD Web Access server, click Start, point to Administrative Tools, and then click Internet Information Services (IIS) Manager.
In the left pane of Internet Information Services (IIS) Manager, expand the server name, expand Sites, expand Default Web Site, expand RDWeb, and then click Pages.
In the middle pane, under IIS, double-click Authentication.
Ensure that Forms Authentication is set to Enabled. If it is not, right-click Forms Authentication, and then click Enable.
To configure the RD Web Access Web site to use Windows Authentication instead of Forms Authentication or to not use SSL, see Remote Desktop Web Access Security.