RDP Gateway: User did not meet connection authorization policy requirements and was therefore not authorized to access the RD Gateway server.

Mountain Pond 1,441 Reputation points
2024-04-02T07:09:59.0033333+00:00

Hello,

I'm a little confused and don't understand why I'm getting an access denied error.

mstsc_IcyM4uRtW2

ApplicationFrameHost_Ylaanogbz4

If I enable the "Bypass RD Gateway server for local addresses" option, in this case everything is fine and GW passes the connection to the target server.

mstsc_LJ4iBnlNcH

However, I need dual authentication, this is the purpose of using the Gateway role.

I tried:

change NPS logging settings."If logging fails, discard connection request"

ApplicationFrameHost_F8EVbqliW9

Added the target server to "RAS and IAS Services".

Verified that the user has group membership in "Domain Admin" and "Domain Users".

ApplicationFrameHost_eQywMaEBIg

ApplicationFrameHost_I0FI8BNK4s

ApplicationFrameHost_oAD0imv8jH

Remote Desktop
Remote Desktop
A Microsoft app that connects remotely to computers and to virtual apps and desktops.
4,628 questions
0 comments No comments
{count} votes

Accepted answer
  1. Karlie Weng 18,676 Reputation points Microsoft Vendor
    2024-05-24T05:51:58.9333333+00:00

    Hello,

    It's important to verify your Gateway authentication method. If your event log indicates you are using NTLM with HTTP, but the Gateway requires Certificate authentication (which should utilize HTTPS), then you need to examine whether any Group Policy or other settings are restricting your authentication to HTTP.


    If the Answer is helpful, please click "Accept Answer" and upvote it.

    0 comments No comments

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.