Hi, thanks for any help with this query.
So, we have a domain where the internal namespace is different to the external/public namespace. We have a wildcard certificate for the public namespace. At the moment we are testing deployment of RemoteApps. We want Credential Delegation and automatic app opening to work. We have followed the necessary processes for this. We have set up delegation to the TermSrv SPN etc. Now, for us to be able to use the external wildcard cert we need to run the "Change published FQDN for Server 2012 or 2012 R2 RDS Deployment" script, and set this new connection broker fqdn in there. All good to this point, but when we make this change it isnt possible to seamlessly connect to the published remoteapp... We get error around the fact the server we are connecting to isnt that of the one published...
Now, that aside, is there a single post that someone can point me to that deals with a scenario such as this - where the delegation is to a different SPN and it works... I should add that we have also tried to add the changed connection broker SPN to the computer account, and also added it to the places in the GPO for auto pass-through of credentials...
Hope this makes sense...
Regards
Phil