๐ง 1. Introduction to RDS
Remote Desktop Services (RDS) allows users to connect to centralized desktops and applications from remote locations. It enables:
- Centralized management of desktops and apps
- Improved security and compliance
- Reduced hardware costs using thin clients
๐ 2. RDS Deployment Overview
Key RDS Roles:
| Role | Description |
|---|---|
| RD Session Host (RDSH) | Hosts Windows-based programs or the full desktop |
| RD Licensing | Manages RDS Client Access Licenses (CALs) |
| RD Connection Broker | Manages user sessions and load balancing |
| RD Web Access | Provides a web portal for users to access RemoteApps and desktops |
| RD Gateway | Provides secure access via HTTPS over the Internet |
โ๏ธ 3. Prerequisites
- Windows Server (2016, 2019, or 2022)
- Domain-joined servers (Active Directory environment)
- Proper RDS CALs
- Static IP and hostname for each RDS role server
- Certificates (public or internal CA) for secure access
๐งฑ 4. Installing RDS Roles
Via Server Manager:
- Open Server Manager > Add Roles and Features
- Choose Role-based or feature-based installation
- Select your server
- In the Roles list, choose Remote Desktop Services
- Select one or more:
- RD Connection Broker
- RD Web Access
- RD Session Host
- Install and reboot if required
๐ก In production, install roles on separate servers for scalability and security.
๐ 5. Configuring RD Licensing
- Go to Server Manager > Remote Desktop Services > Overview
- Click on RD Licensing
- Right-click the licensing server โ Activate Server
- Follow the wizard to activate via Internet or phone
- Install CALs (Per User or Per Device)
- On each Session Host:
- Run
gpedit.msc - Navigate to:
Computer Configuration > Administrative Templates > Windows Components > Remote Desktop Services > RD Session Host > Licensing - Set the licensing mode and specify the license server
- Run
๐ผ 6. Creating a Session Collection
- In Server Manager > Remote Desktop Services
- Click Collections > Tasks > Create Session Collection
- Provide:
- Name & description
- Session Host servers
- User groups
- Profile disk config (optional)
- Finish wizard to deploy
๐ฆ 7. Publishing RemoteApps
- Inside the created collection:
- Click Tasks > Publish RemoteApp Programs
- Choose programs to publish
- Confirm and finish
- Applications will be available via:
- RD Web Access portal
- RDP shortcut (.rdp file)
- RemoteApp and Desktop Connections
๐ 8. Configuring RD Gateway (Optional)
- Add RD Gateway role via Add Roles and Features
- Configure HTTPS certificate
- In RD Gateway Manager:
- Create a Connection Authorization Policy
- Create a Resource Authorization Policy
- Update DNS to resolve externally (e.g.,
rds.yourcompany.com)
๐ฅ 9. Accessing RDS as a User
- Open a browser:
https://<your-RDWeb-server>/RDWeb - Or use Remote Desktop Connection (mstsc):
- Enter
rds.yourdomain.com - Authenticate with domain credentials
- Enter
๐ 10. Monitoring and Operations
Tools:
- Server Manager > Remote Desktop Services Dashboard
- Event Viewer for RDS-related logs
- Performance Monitor (perfmon.msc)
- Task Manager > Users (on Session Hosts)
Common Tasks:
| Task | Tool |
|---|---|
| Add/remove users | Active Directory |
| Reboot sessions | Server Manager or taskkill |
| Add programs | Install on Session Host, republish if needed |
| License check | RD Licensing Diagnoser |
๐ 11. Backup and Recovery
- Use Windows Server Backup or third-party tools
- Backup:
- RD Connection Broker DB
- RD Licensing data
- User profile disks (if enabled)
- Document server settings and collections for disaster recovery
โ 12. Best Practices
- Use SSL certificates from a trusted CA
- Limit access via security groups
- Regularly patch servers and clients
- Monitor licensing usage and compliance
- Use User Profile Disks (UPD) for user data consistency
- Scale out Session Hosts with Connection Broker load balancing
Sakthi's Blogs 