Forum Discussion
Grant B2B users access to on-premise RDS servers (apps)
Hi there, I've been looking for this issue on the internet, but can't really find a good answer or solution. We have a on-premise (iaas) 2016 RDS (mainly remoteapp) solution that we would like to...
I can't tell you if and how well it works with RDS but for other apps I got this working. You can create shadow accounts in your AD with matching UPNs and use KCD at the AppProxy.
The trick is to use the UPN of the guest account in the format name_domain#EXT@tenant.onmicrosoft.com
In my case the users don't need to know the passwords of their OnPrem AD user and we can deny interactive logons. In combination with the restrictions for guest users in the tenant the design is increasing security.
The trick is to use the UPN of the guest account in the format name_domain#EXT@tenant.onmicrosoft.com
In my case the users don't need to know the passwords of their OnPrem AD user and we can deny interactive logons. In combination with the restrictions for guest users in the tenant the design is increasing security.
Thx for the reply! Nice to hear that it could work for on-premise applications. It has been almost a year ago that we tried this solution with RDS, maybe things have been improved.