![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 18%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHA%3C/text%3E%3C/svg%3E)
Hello @Harry Ade
there is no best course of action if you need to keep for example users to be able to log in with their existing domain credentials. It might cause a certificate issue in the RDS.
If You want your users to connect to the RDS farm You need to create a forward lookup zone on your internal DNS server for your domain, then make A records for all your RD servers in that zone. When you are setting up the connection on end user PCs you can simply point them to RDServer.domain, and as long as your certificate matches that domain it should work fine.
Also you can accomplish this with split DNS.
Hope this helps with your query!
----------
--If the reply is helpful, please Upvote and Accept as answer--