Hey,
We're using RD Web Access on 2008 R2. We've got the Web.Config file set to Windows authentication (for integrated) so internal, domain-joined clients can get to the web page without having to log in. We then publish the RDWeb Access web site through TMG 2010, using FBA with Kerberos/Negotiate (NTLM), and have set the required SPNs on the RDWeb Access server.
The internal FQDN of the RDWeb Access server is RDS-01.corp.domainname.com but the public facing FQDN is remote.domainname.com.
How do I get SSO working in this scenario, as users are having to log in to TMG, then again when launching the first RemoteApp application or using the Remote Desktop tab.
Thanks