Just wondering if someone could help me out on how to enable SSO when lunching RemoteApps.
I followed some instructions on the net but it does not seem to work.
What I did was the following:
I created a Certificate from my IIS7 and imported as a Digital Signature to my RemoteApp. When I try running the RemoteApp from the TS Gateway (ie I'm physically RDP to it) SSO works and my app lunches automatically. However, when I open IE from another computer in the network or outside the network, the TS Web opens my users authenticate to it, but when launching the RemoteApp they are prompted once again to log in. Since the RemoteApp requires a user authentication my users will get annoyed if they have to type their username/passwords 3 times. Any Thoughts on how to allow SSO to work specially from the internet. I really don't want to purchase a certificate from a trusted vendor so I was thinking of publishing the certificate myself to the users.
Thanks
Best Answer
If they are not on the domain, I'm rather confident their is no way to pass-through creds from web login to RDP. All the Web Access does is dynamically create a .RDP file that you download on the fly. If they were domain joined, maybe, but not from a workgroup "home" computer. Web Access does not support (without writing ASP.NET code) taking your web form logon and copying it into the .RDP file that you get when you click a app.
The best you can hope for if you must use Web Access feature is once at web form, then if you have public (purchased) SSL Cert they won't get a warning before RDP requires it's own NLA login prompt.
You'd need Citrix Web Access to get that true one-time login.