Hello,

I'm trying to get the APM to work as an RDP gateway.

Looking through the following article (I have everything in place, at least I think)

https://techdocs.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm-application-access-13-1-0/5.html#guid-53db1141-8bfc-42a5-8b36-536722e52278

Short overview of the desired Remote Desktop config:

Server Type: Remote Desktop Session Host

Client Type: Native

Destination: User defined

I have configured flow as it's shown in the artile:

Client Type > RDP Client > NTLM Auth > RDG Policy (Start -> Allow) > Allow

I'm trying to work this into my existing APM webtop.

Works:

If I change the destination to a static IP for example, and remove the RDG Policy Assignment it works

Once logged into the webtop, I can click on the RDP icon and it will download a launchxxxxx.rdp file, once I open it I get the desired RDP connection.

Does not work:

If I toggle the Destination setting to User defined, I get a prompt in the webtop, it will download the rdp file and once I try to open it the connection cannot be established. (To my understanding I need to use the RDG Policy assignment for this situation, so I added it after the successful NTLM Auth action).

Error message:

"Your computer can't connect to the Remote Desktop Gateway server. Contact your network administrator for assistance".

I switched my logging to debug, but I don't see anything after the event: Starting RDP 'Desktop' from resource '/xxx/RDP_UserDefined'

Hoping someone might be able to point me in the right direction.

I find this a more elegant solution than needing to provide VPN's for people who need to use only RDP (or first start a VMware VDI session and open RDP from within there).

Kind regards,

Stephan Schwarz