MultiPoint Services Role in Windows Server 2016

UseIT | Roman Levchenko



MultiPoint Server (MPS) is a technology and solution based on Windows Server and Remote Desktop Services. MPS was originally built for use in the classrooms and educational institutions and It allows you to provide low-cost sharing between MPS and user stations. User stations can be consist of only monitor, keyboard, mouse (zero clients) and be connected to MPS through USB (usb hubs), video cables or through LAN (RDP-over-LAN, if clients are not zero. for example, laptops, thin clients and etc..).  MPS uses some of the RDS services (by default): RD Session Host and RD Licensing Server.

First version of MPS was released in February, 2010 . In MPS 2010 you can connect stations and host only through USB hubs and video ports.

Ability to use LAN between user stations and MPS was added only to the next version – MPS 2011 released in March, 2011.

Some of the main features of…

View original post 1,110 more words

Server 2016 RDS via Azure AD Application Proxy end-to-end guide


remote_desktop_blueOne of our priorities for this year was to improve our remote access offering to staff to enable more flexible working whilst outside of college. Office 365 helps greatly and has already improved functionality in many ways but there’s still some legacy applications and classic file shares that need to be provided remotely too. If at all possible we prefer the files not to leave the network so some form of virtual desktop looked the way to go.

After discounting VMware and Citrix offerings on cost grounds the improvements to Microsoft’s RDS offering in Server 2016 seemed to come at a perfect time.

Even more so now we’ve implemented Azure AD Application Proxy (more on that shortly!) We’ve also recently decommissioned some services that freed up a bit of physical hardware resource to “play” with so away we went!

Server installation

The physical hardware for now is running on some…

View original post 1,520 more words

Publishing Remote Desktop Gateway through Web Application Proxy

murat senel blog

If you want to restrict access to your Remote Access Gateway and add pre-authentication for remote access, you can roll it out through Web Application Proxy. This is a really good way to make sure you have rich pre-authentication for RDG including MFA. Publishing without pre-authentication is also an option and provides a single point of entry into your systems.

How to publish an application in RDG using Web Application Proxy pass-through authentication

  1. Installation will be different depending on whether your RD Web Access (/rdweb) and RD Gateway (rpc) roles are on the same server or on different servers.

  2. If the RD Web Access and RD Gateway roles are hosted on the same RDG server, you can simply publish the root FQDN in Web Application Proxy such as,

    You can also publish the two virtual directories individually e.g. and

  3. If the RD Web Access and the…

View original post 137 more words

Install Remote Desktop Gateway on Windows 2016

GrumpySysAdmin Blog

Below is a step by step to getting a basic RDS gateway configured. There are additional steps and considerations that you may need to consider for your environment. In this example I am using port forwarding into my test lab, but you will want to consider where this server should be placed in your network and ensure proper firewalls are configured.

What is a Remote Desktop Gateway?

A RD Gateway allows remote users the ability to connect to internal network resources from outside the corporate network without utilizing a VPN. These internal resources can be on private or on a NAT network. The connectivity is achieved by transmitting RDP over a SSL tunnel using port 443. A RD Gateway server has a variety of authorization policies that allow you to control configuration for:

  • What groups of users can utilize the RD Gateway.
  • What computers or internal resources the authorized users…

View original post 446 more words

Configure “Connect to a Remote Computer” in RDWeb 2012

Ryan Mangan's IT Blog

To use the “connect to a Remote Computer” feature in RDS 2012 you would need to add the RD gateway address to the settings on the web access server.

To do this you would need to open up IIS in the RDweb Server.

Expand the default Website

Select “Pages

Select “Application Settings

Then open up the “DefaultTSGateway

Enter the external address (FQDN) of the RD Gateway in the Value Field.


Select Application Settings


Enter the external RD Gateway FQDN.


You will now be able to remote to devices using the Web interface.

View original post

Deploying Remote Desktop Gateway RDS 2012

Ryan Mangan's IT Blog

What is a Remote Desktop Gateway

A Remote Desktop Gateway Server enables users to connect to remote computers on a corporate network from any external computer. The RD Gateway uses the Remote Desktop Protocol & the HTTPS Protocol to create a secure encrypted connection.

A 2012 RD Gateway server uses port 443 (HTTPS), which provides a secure connection using a Secure Sockets Layer (SSL) tunnel.

A Remote Desktop Gateway Provides The following Benefits:

  • Enables Remote Desktop Connections to a corporate network without having to set up a virtual private network (VPN).
  • Enables connections to remote computers across firewalls.
  • Allows you to share a network connection with other programs running on your computer. This enables you to use your ISP connection instead of your corporate network to send and receive data over a remote connection.

Please see the following linkFor more information on deploying a Gateway on the perimeter network: 

View original post 459 more words

Step by Step Server 2016 Remote Desktop Services QuickStart Deployment #RDS #VDI #RDP #RemoteApp

Robert Smit MVP Blog

Setting up a RDS Farm is not that hard but anyway I created a step by step guide to build a Windows Server 2016 Remote Desktop Services deployment.

there is a new feature in the Windows Server 2016 RDS : Full OpenGL support with RDS for VDI scenarios.

And Yes you can use the Quickstart but I’m not using this in this demo setup. I tried to do a complete setup,but doing this I noticed that I’m constantly expanding this demo with new options so. I’ll keep this pure to the setup and some PowerShell basics.

Quick Start is an option in RDS deployment during the process of adding roles and features with Windows Server 2012 Service Manager. It dramatically simplifies the deployment process and shortens go-to-market while still providing the ability to add additional RDS servers as needed. The abstraction formed by RDWA, RDCB, and RDSH offers such elegancy…

View original post 1,189 more words

Puppet – Join machine to the Windows AD Domain


install powershell module

puppet module installpuppetlabs-powershell
Under modules/module name/manifests folder create manifest file,password is encrypted with Hiera,after machine is joined to domain, it will be rebooted.
class domain_membership (
  $domain = '',
  $username = 'administrator',
  $password = lookup('password'),
  $secure_password = false,
  $machine_ou      = 'OU=test,DC=ad,DC=contoso,DC=com',

$code = " 
$secStr=ConvertTo-SecureString '${password}' -AsPlainText -Force; 
if (-not $?) { 
write-error 'Error: Unable to convert password string to a secure string'; 
exit 10; 
$creds=New-Object System.Management.Automation.PSCredential( '${username}', $secStr ); 
if (-not $?) { 
write-error 'Error: Unable to create PSCredential object'; 
exit 20; 
Add-Computer -DomainName ${domain} -OUPath $_machine_ou -Restart -Force -Cred $creds; 
if (-not $?) { 
write-error 'Error: Unable to join domain'; 
exit 30; 
exit 0"

# Use the Josh Cooper PowerShell provider
exec { 'join_domain':

command => $code,
provider => powershell,
logoutput => true,
unless => "if ((Get-WMIObject Win32_ComputerSystem).Domain -ne '${domain}') { exit 1 }",


View original post