GPO: Configure SSO on RDS Connections


In this article, we’ll see how to set up Single Sign-on (SSO) on Remote Desktop (RDS) connections using a GPO.

This solution eliminates the need for users to re-enter their login to connect to an RDS server or RemoteApp connections.

Policy Configuration – GPO

Ouvrir la console de Gestion des stratégies de groupes, sélectionner l’OU 1 où la GPO doit être appliquée, faite un clic droit dessus et cliquer sur Créer un objet GPO dans ce domaine, et le lier ici… 2.
Nouvelle GPO SSO RDS

Nommer la GPO 1 et cliquer sur OK 2.
Nom de la GPO

Faire un clic droit sur la stratégie 1 et cliquer sur Modifier 2.
Modifier le GPO

Aller à l’emplacement suivant : Configuration ordinateur / Stratégies / Modèles d’administrations / Système / Délégation d’informations d’identification 1.
Chemin jusqu'au parametre

Faire un double clic sur Autoriser la délégation d’information d’identification par défaut 1 pour ouvrir les paramètres.
Modifier le parametre

Activate 1 the parameter and click on Display … 2.
Activer le parametre

In the value part 1 enter the server (s) in the form TERMSRV / server_name_name and click on OK 2.
Entrer le nom du serveur

Click Apply 1 and OK 2 to close the window.

The setting is On 1. Close the editor.
Délégation d'authentification activée

Summary of the strategy:
Résumé de la GPO

Test from a client

Go to a client workstation that is in the OU of the strategy.

Open a command window in Administrator and enter the following command to refresh the GPOs.

gpupdate /force

Open the Remote Desktop Connection client. Entering the server name defined in GPO 1, User Name 2 must be filled in automatically and can not be changed. Click on Login 3.
Client rdp : SSO connexions RDS

How useful was this post?

Click on a star to rate it!

Average rating / 5. Vote count:

No votes so far! Be the first to rate this post.

We are sorry that this post was not useful for you!

Let us improve this post!

Related Posts

RDS: reduce the logon time
Introduction Before I explain how to optimize the opening of sessions on your RDS servers, I will explain the operation. By default, since Windows XP, the group policy processing mode is asynchronous, that is, the user's session is opened until the g

GPO: Deploy RemoteApp Programs
Introduction In this tutorial we will see how to deploy RemoteApp configured by Group Policy (GPO) on an RDS farm. Prerequisites The deployment of the RDS farm must have: A server with the RD Web Access service. A collection of configured with remote

GPO: Deploy a certificate
Presentation In this tutorial, we will see how to deploy a certificate on computers using a GPO. Some cases where you may need to distribute a certificate: Internal Certification Authority Appliance certificate for SSL filtering Self-signed web serve

Leave a Comment