Deploy the Remote Desktop Gateway role
This article will tell you how to use the Remote Desktop Gateway (RD Gateway) role to deploy Remote Desktop Gateway servers in your Remote Desktop environment. You can install the server roles on physical machines or virtual machines depending on whether you are creating an on-premises, cloud-based, or hybrid environment.
Install the RD Gateway role
Sign into the target server with administrative credentials.
In Server Manager, select Manage, then select Add Roles and Features. The Add Roles and Features installer will open.
In Before You Begin, select Next.
In Select Installation Type, select Role-Based or feature-based installation, then select Next.
For Select destination server, select Select a server from the server pool. For Server Pool, select the name of your local computer. When you're done, select Next.
In Select Server Roles > Roles, select Remote Desktop Services. When you're done, select Next.
In Remote Desktop Services, select Next.
For Select role services, select only Remote Desktop Gateway When you're prompted to add required features, select Add Features. When you're done, select Next.
For Network Policy and Access Services, select Next.
For Web Server Role (IIS), select Next.
For Select role services, select Next.
For Confirm installation selections, select Install. Don't close the installer while the installation process is happening.
Configure the RD Gateway role
Once the RD Gateway role is installed, you'll need to configure it.
To configure the RD Gateway role:
Open the Server Manager, then select Remote Desktop Services.
Go to Servers, right-click the name of your server, then select RD Gateway Manager.
In the RD Gateway Manager, right-click the name of your gateway, then select Properties.
Open the SSL Certificate tab, select the Import a certificate into the RD Gateway bubble, then select Browse and Import Certificate….
Select the name of your PFX file, then select Open.
Enter the password for the PFX file when prompted.
After you've imported the certificate and its private key, the display should show the certificate’s key attributes.
Note
Because the RD Gateway role is supposed to be public, we recommend you use a publicly issued certificate. If you use a privately issued certificate, you'll need to make sure to configure all clients with the certificate's trust chain beforehand.
Next steps
If you want to add high availability to your RD Gateway role, see Add high availability to the RD Web and Gateway web front.