Share via

Enable RDP on TMG for Remote Management

  • Article

This wiki show's how to enable RDP on a TMG server. Found some questions about it and experience myself either that just enable Terminal Server and add computers/networks isn’t enough.

http://mscholman.files.wordpress.com/2011/10/06_thumb2.png?w=244&h=185

http://mscholman.files.wordpress.com/2011/10/07_thumb2.png?w=244&h=188

So why it isn’t working, I mean, thoughts on TMG always tells me, Only use TMG console! Especially when working with mail hygiene solutions integrated in TMG… You’ll regret you opened the Forefront Security for Exchange Console for editing the spam configuration or change something in the Exchange Edge (Exchange Console) http://mscholman.files.wordpress.com/2011/10/wlemoticon-smile2.png?w=600.

Here we have an exception granted and we need to assign the RDP-Tcp connection to a single adapter (LAN). Its common, if we look for solutions, and was also a issue in former versions of ISA Server.

Open the Remote Desktop Session Host Configuration and right click RDP-Tcp:

http://mscholman.files.wordpress.com/2011/10/01_thumb2.png?w=244&h=158

http://mscholman.files.wordpress.com/2011/10/02_thumb2.png?w=135&h=85

Go to the Network adapter tab and select the network adapter you want to assign for RDP. I assigned it to my internal network adapter here:

http://mscholman.files.wordpress.com/2011/10/03_thumb1.png?w=194&h=244

Press OK, and open the services to restart Remote Desktop Services:

http://mscholman.files.wordpress.com/2011/10/04_thumb2.png?w=244&h=74

Go back to your TMG Console, open the Firewall Policy and in the right pane under tasks, you have on the bottom option to edit system policy:

http://mscholman.files.wordpress.com/2011/10/05_thumb2.png?w=168&h=133

Scroll to Remote Management and in Terminal Server General tab select Enable…..group.

http://mscholman.files.wordpress.com/2011/10/06_thumb3.png?w=244&h=185

In the from tab specify from which sources you want to allow Terminal Server:

http://mscholman.files.wordpress.com/2011/10/07_thumb3.png?w=244&h=188

Hit OK and apply configuration:

http://mscholman.files.wordpress.com/2011/10/27_thumb.png?w=244&h=56

So now you should be able to Remote Desktop to your TMG server from the selected computers/networks you assigned.

Orignal post can be found here: http://blog.josmar.nl/2011/11/enable-rdp-on-tmg-for-remote-management.html