Technet: http://support.microsoft.com/default.aspx/kb/951608
Enable Single Sign on for Windows XP SP3
This policy will enable the possibility of launching unsigned .rdp files. However, if unsigned .rdp files are used, you will not be able to get rid of the following messagebox (at least, I did not find a way yet, so, if you did, please let me know):
Set the policy Computer or User Configuration – Administrative Templates – Windows Components – Terminal Services – Remote Desktop Connection Client – Allow .rdp files from unknown publishers to Enabled. (Of course, you can also load the terminalserver.admx and configure this policy from global PowerLaunch, which is the preferred way if you want to configure it from user configuration)
Enable the Policy and add the Terminal Servers by clicking the Show button. Make sure every Terminal server is included and that the prefix TERMSRV/ is entered for every server. Also takeВPFQDN names into account! If you use both netbios name and fqdn, you should include them both in the server list!!!ВP
Set the following Policy: Computer Configuration – Policies – Administrative Templates – System – Credentials Delegation – Allow Delegating Default Credentials
Single sign on is by default supported for Windows Vista and Windows 7. Therefore, we can use group policy objects to configure the right settings.
Enable Single Sign on for Windows Vista and Windows 7
This is annoying (since we were already logged on and given access to the application by RES PowerFuse!) and single sign on can be configured. Requirements are: Windows XP SP3 with RDP client 6.1 or Windows Vista and Windows 7.
Now the application will appear in the configured users start menu. However, if you start the application, Windows will still ask for credentials of the user:
Then choose the servers or server groups where the application should be published.
Go to the tab Publishing, choose Microsoft TS RemoteApp and mark the checkbox Enable Microsoft TS Remote App Publishing.
An application can be enabled as a MS RemoteApp via the configuration node of the application.
Global settings for Microsoft Remote Applications can be enabled in the console via RES PowerFuse Setup – Integration – Microsoft TS RemoteApp.
Publish a Microsoft Remote App in RES PowerFuse
In this blog we will describe: how Microsoft Remote Applications can be published, and how we can enable “single sign on” on.
With RES PowerFuse it is possible to offer applications, which are delivered by multiple mechanisms. RES PowerFuse is also able to offer Microsoft Remote Applications in the users Start Menu. By default Microsoft does not allow Single Sign On with RDP sessions. Thus, also not with the Remote Apps. technology, because this technology uses RDP sessions.
With the Release of Windows Server 2008, it is also possible to publish applications from a Microsoft Terminal Server.
Terminal Service Remote App single sign on
Terminal Service Remote App single sign on | RES Software Blog
Комментариев нет:
Отправить комментарий