Nginx Reverse proxy + RD Gateway Auth Problem

addis_a · October 17, 2014, 2:24pm

Hello all,

Nginx is the reverse proxy+ MS Remote Desktop Gateway using SSL, the
first
authentication is working, the problem is when I try to open a program
in
this environment for example wordpad.exe of session host RD, it ask for
user and password (I use the same credentials used to connect in RD
Gateway), when the credentials are filled up again, I get the message
user
or password are wrong.

My .conf for the context:

 location /RDWeb {   <--- the same context context in IIS
    proxy_pass https://server.domain/RDWeb;
    proxy_set_header Accept-Encoding "";
    proxy_set_header host server.domain;
 }

 location /rpc { <--  the same context context in IIS
    proxy_pass http://server.domain/rpc;
 }

In the log of nginx with debug mode on, show this information:

2014/10/17 09:06:02 [info] 20589#0: *43 client x.x.x.x closed keepalive
connection(this is the only message)

Any help will be appreciated, thank you!

Posted at Nginx Forum:

casper_the_ghost · October 17, 2014, 2:55pm

Hello!

On Fri, Oct 17, 2014 at 08:24:18AM -0400, timbo wrote:

Hello all,

Nginx is the reverse proxy+ MS Remote Desktop Gateway using SSL, the first
authentication is working, the problem is when I try to open a program in
this environment for example wordpad.exe of session host RD, it ask for
user and password (I use the same credentials used to connect in RD
Gateway), when the credentials are filled up again, I get the message user
or password are wrong.

Make sure that Basic authentication is used, not NTLM aka
Integrated Windows Authentication. The latter has problem with
proxy servers due to it’s connection-oriented design, and will not
work though nginx.

–
Maxim D.
http://nginx.org/

casper_the_ghost · December 2, 2015, 8:40am

Hi timbo,

I am also trying to connect to a Remote Desktop Gateway through nginx.
Did
you get it work?

Regards,
Fred

Posted at Nginx Forum:

casper_the_ghost · October 17, 2014, 4:10pm

Thank you very much Maxim, I will check your recommendation I will post
the
results here.

Posted at Nginx Forum:

casper_the_ghost · December 2, 2015, 9:51am

Hi, sorry, but I don’t understand what you mean with stream {}, my nginx
config for the RD Gateway is the following:

server {listen *:6080; listen *:6443 ssl;
server_name  ~^rdg..*$; include ssl_rdg.conf;
location / {proxy_pass  https://s2012-rdg; include

proxy_defaults.conf;}}

Should I replace proxy_pass to stream?

Regards,
Fred

Posted at Nginx Forum:

casper_the_ghost · December 2, 2015, 9:45am

frederico Wrote:

Hi timbo,

I am also trying to connect to a Remote Desktop Gateway through nginx.
Did you get it work?

Have you tried this using stream {} ? which works fine for vpn and other
streaming services.

Posted at Nginx Forum:

casper_the_ghost · December 2, 2015, 6:16pm

Hi,

I’ve tried a lot of commands, stream is not recognized and I don’t think
it’s possible to make it work. nginx need a certificate and RD Gateway
need
also a certificate, so there are 2 SSL connection between the client and
the
server, it’s can’t work.

I also tried with the same certificate on the 2 connections, but without
success…

Regards,
Fred

Posted at Nginx Forum:

casper_the_ghost · December 2, 2015, 10:50am

frederico Wrote:

casper_the_ghost · December 2, 2015, 6:26pm

frederico Wrote:

Hi,

I’ve tried a lot of commands, stream is not recognized and I don’t
think it’s possible to make it work. nginx need a certificate and RD
Gateway need also a certificate, so there are 2 SSL connection between
the client and the server, it’s can’t work.

Then you have tried the wrong version:
http://nginx.org/en/docs/stream/ngx_stream_ssl_module.html
http://nginx.org/en/docs/stream/ngx_stream_proxy_module.html#proxy_pass

Posted at Nginx Forum: