locked
SSO issue in XP (Works with Hostname, but not public Domain Name) RRS feed

  • Question

  • Hi,

    I have a Windows 2008 Terminal Server and have followed all instructions I could find to enable SSO.  IT works 100% perfectly in Windows 7 beta (my test machine) when using the public domain name e.g. publicname.company.com. This works for RDP, Remote Web Apps, or Remote Installed Apps.

    From my XP machine I have configured the registry entries:

    HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CredentialsDelegation
    REG_DWORD: AllowDefaultCredentials
    Value data: 00000001
    REG_DWORD: ConcatenateDefaults_AllowDefault
    Value data: 00000001
    The KB also states that the following is required:-
    HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CredentialsDelegation\AllowDefaultCredentials
    REG_SZ "1" = "TERMSERV/*"

    When I use RDP or Remote Apps installed locally it ONLY works if I reference the server by its hostname e.g.:
    Server1.internaldomain.local.  This makes it impossible to use SSO for Remote Web Apps.

    I would very much prefer to utilize SSO for Web Apps, Remote Apps, and RDP using the public domain name publicname.company.com instead of the internal hostname Server1.internaldomain.local

    It works perfectly in Windows 7 beta, but works partially in a funky way for Windows XP SP3.

    Thank you,
    Jeromy
    Thursday, March 26, 2009 1:00 AM

Answers

All replies