Product Documentation

RDP connection redirection

A Citrix Gateway appliance now supports RDP connection redirection in presence of connection broker or session directory. An RDP proxy communication no longer requires an exclusive URL for every connection from client to the server. Instead, the proxy uses a single URL to connect to an RDP server farm, reducing the maintenance and configuration overhead for an administrator.

Point to note:

  • RDP connection redirection is supported only when SSO is enabled and is supported in both single Gateway and Stateless or Dual Gateway mode along with enforcement (Smart Access).
  • RDP Proxy feature is supported only with token-based redirection supporting IP cookies. IP-based routing tokens “msts=” are handed back by Windows session broker or Connection broker when “Use IP Address Redirection” functionality is disabled.
  • Dedicated redirectors for RDP Proxy connection can be configured.

Deploy RDPProxy in presence of connection broker

RDPProxy in presence of connection broker can be deployed in the following two ways.

  • With RD session host servers participating in RD connection broker load-balancing.
  • In presence of RDP load-balancing feature.

With RD session host servers participating in RD connection broker load balancing:

In this case, the RDP URL link can be configured to point to one of the RDP server as destination server, which acts as redirector. Also, it is possible to have one of the RDP server in the farm as destination server, (In this case the server does not accept any RDP session). For more information, refer Load Balancing of Remote Desktop Protocol (RDP) Servers.

In presence of RDP load-balancing feature:

When connection broker load-balancing is not enabled, we can have RDP load-balancing feature available on Citrix ADC to do the required load-balancing of RDP sessions in presence of connection broker. In this case, the RDP URL link has to be configured to have RDP load-balancer as destination server. The RDP load-balancer can be on the same Citrix Gateway appliance as RDP-Proxy. For more information, refer Loading balancing rdp servers

Note: To support RDPProxy in presence of connection broker, RDP connection redirection should be enabled on Citrix Gateway.

Configure RDPProxy in presence of connection broker

To configure RDP connection redirection by using the command line interface, at the command prompt, type:

    add rdpserverprofile <Name> -psk <string> -rdpRedirection ( ENABLE | DISABLE )

    add rdpserverprofile serverProfileName -psk “secretString” -rdpRedirection ENABLE

To configure RDP connection redirection by using Citrix ADC GUI:

  1. Navigate to NetScaler Gateway > Policies > RDP.
  2. Right click on RDP to Enable or Disable the RDP redirection functionality.

RDP connection redirection