Citrix Gateway 13.0

RDP connection redirection

A Citrix Gateway appliance now supports RDP connection redirection in the presence of a connection broker or session directory. An RDP proxy communication no longer requires an exclusive URL for every connection from the client to the server. Instead, the proxy uses a single URL to connect to an RDP server farm, reducing the maintenance and configuration overhead for an administrator.

Point to note:

  • RDP connection redirection is supported only when SSO is enabled and is supported in both single Gateway and Stateless or Dual Gateway mode along with enforcement (SmartAccess).
  • RDP Proxy feature is supported only with token-based redirection supporting IP cookies. IP-based routing tokens “msts=” are handed back by the Windows session broker or Connection broker when “Use IP Address Redirection” functionality is disabled.
  • Dedicated redirectors for RDP Proxy connection can be configured.

Deploy RDP Proxy in the presence of connection broker

RDP Proxy in the presence of connection broker can be deployed in the following two ways.

  • With RD session host servers participating in RD connection broker load-balancing.
  • In the presence of the RDP load balancing feature.

With RD session host servers participating in RD connection broker load balancing:

In this case, the RDP URL link can be configured to point to one of the RDP servers as the destination server, which acts as redirector. Also, it is possible to have one of the RDP servers in the farm as destination server (in this case the server does not accept any RDP session). For more information, refer Load Balancing of Remote Desktop Protocol (RDP) Servers.

In the presence of the RDP load-balancing feature:

When connection broker load-balancing is not enabled, we can have the RDP load-balancing feature available on Citrix ADC to do the required load-balancing of the RDP sessions in the presence of the connection broker. In this case, the RDP URL link has to be configured to have the RDP load balancer as destination server. The RDP load-balancer can be on the same Citrix Gateway appliance as the RDP Proxy. For more information, refer Loading balancing RDP servers.

Note: To support RDP Proxy in the presence of a connection broker, RDP connection redirection must be enabled on Citrix Gateway.

Configure RDP Proxy in presence of connection broker

To configure RDP connection redirection by using the command line interface, at the command prompt, type:

    add rdpserverprofile <Name> -psk <string> -rdpRedirection ( ENABLE | DISABLE )

    add rdpserverprofile serverProfileName -psk “secretString” -rdpRedirection ENABLE

To configure RDP connection redirection by using the Citrix ADC GUI:

  1. Navigate to Citrix Gateway > Policies > RDP.
  2. Right-click RDP to Enable or Disable the RDP redirection functionality.

RDP connection redirection