How to Install Remote Desktop Services on Windows Server 2022


Remote Desktop Services (RDS) is a powerful role in Windows Server that allows multiple users to connect remotely to desktops, applications, and data hosted on a central server. In business environments where employees need to access corporate resources securely from anywhere, RDS provides scalability, centralized management, and seamless user experiences. With Windows Server 2022, Microsoft continues to enhance RDS for better security, performance, and compatibility with modern workloads.

This article will guide you step by step through the installation and configuration of Remote Desktop Services (RDS) on Windows Server 2022.

Understanding Remote Desktop Services

Before diving into the setup, let’s understand what RDS actually provides. RDS is not just remote access—it enables:

  • Remote Desktop Session Host (RDSH): Hosts Windows-based applications or desktops for users.

  • Remote Desktop Gateway (RD Gateway): Provides secure connections from outside the corporate network.

  • Remote Desktop Licensing (RD Licensing): Manages and issues licenses to clients.

  • Remote Desktop Connection Broker (RD Broker): Balances load and reconnects users to their sessions.

  • Remote Desktop Web Access (RD Web): Provides a web portal for accessing apps and desktops.

For a small or medium setup, all these roles can be installed on a single server. Larger deployments can distribute them across multiple servers for scalability.

Prerequisites for Installing RDS on Server 2022

Before installing RDS, ensure the following requirements are met:

  1. Operating System: Windows Server 2022 Standard or Datacenter edition.

  2. Administrative Rights: You must be logged in as a user with administrator privileges.

  3. Domain Environment (Recommended): While RDS can run in a workgroup, Active Directory Domain Services (AD DS) is recommended for production deployments.

  4. Server Updates: Make sure the latest security and cumulative updates are installed.

  5. Licensing Plan: Decide whether you will use Per-User or Per-Device Client Access Licenses (CALs).

Step 1: Add the Remote Desktop Services Role

  1. Open Server Manager:
    After logging in, launch Server Manager from the Start menu.

  2. Add Roles and Features:

    • In Server Manager, click Manage > Add Roles and Features.

    • Choose Role-based or feature-based installation.

    • Select the local server as the destination.

  3. Select Remote Desktop Services:
    In the server roles list, check Remote Desktop Services. Click Next.

  4. Choose Deployment Type:
    You can choose Quick Start (all roles on one server) or Standard Deployment (roles on multiple servers). For this example, select Quick Start.

Step 2: Install Remote Desktop Session Host (RDSH)

  • The Quick Start wizard will install the Session Host role, which enables hosting desktops and applications.

  • Confirm the installation selections.

  • The server may require a reboot during this process.

Once complete, your server is ready to host remote desktop sessions.

Step 3: Configure RD Licensing

Licensing is crucial because RDS is only available for 120 days in grace mode. To stay compliant, you must activate and configure licensing.

  1. Open Server Manager > Remote Desktop Services.

  2. Navigate to the Deployment Overview.

  3. Click RD Licensing and add the RD Licensing role service.

  4. Select the server as the license server and complete the wizard.

  5. After installation, open Remote Desktop Licensing Manager.

  6. Right-click your server > Activate Server. Follow the wizard to activate over the internet or phone.

  7. Install client access licenses (CALs) as per your agreement.

Step 4: Configure the Connection Broker and RD Web Access

If you chose Quick Start, the Connection Broker and RD Web Access are installed automatically.

  • Connection Broker: Ensures that if a session is disconnected, the user reconnects to the same session.

  • RD Web Access: Allows users to access desktops and applications via a web browser.

To test RD Web Access:

  1. Open a browser on a client machine.

  2. Go to https://<your-server-name>/RDWeb.

  3. Sign in with your domain credentials.

  4. You should see available desktops or applications.

Step 5: Secure Remote Desktop with RD Gateway

For external users connecting from outside the office, security is critical. The RD Gateway uses HTTPS to tunnel RDP traffic, making it secure.

  1. In Server Manager, add the RD Gateway role.

  2. During configuration, specify an SSL certificate (either self-signed for testing or a trusted certificate for production).

  3. Configure policies in RD Gateway Manager to control access.

This step ensures your RDS environment can be securely accessed from the internet without requiring a VPN.

Step 6: Publish Applications or Desktops

RDS allows you to publish either full desktops or specific applications.

  • To publish applications:

    1. Open Server Manager > Remote Desktop Services > Collections.

    2. Create a new Session Collection.

    3. Add applications such as Microsoft Word, Excel, or a custom business app.

  • To publish desktops:
    Simply enable the session collection to provide full desktop access.

Users connecting via the Remote Desktop Client or RD Web will see only the published resources.

Step 7: Configure Group Policies

Group Policy can help manage user experience and enhance security. For example:

  • Redirect folders like Documents to a network share.

  • Restrict access to control panel and settings.

  • Set idle timeouts to log off inactive users.

Group policies are managed through the Group Policy Management Console (GPMC) on a domain controller.

Step 8: Test the Remote Desktop Connection

From a Windows 10 or Windows 11 client:

  1. Open the Remote Desktop Connection app (mstsc).

  2. Enter the server’s IP or hostname.

  3. Log in using domain credentials.

You should now be able to access the remote desktop or applications hosted on Windows Server 2022.

Best Practices for RDS on Server 2022

  1. Use SSL Certificates: Always secure connections with trusted SSL certificates.

  2. Enable Network Level Authentication (NLA): This adds an extra layer of authentication before a session is created.

  3. Monitor Performance: Use tools like Performance Monitor or third-party monitoring software.

  4. Plan for High Availability: In larger environments, deploy Connection Broker and Licensing roles redundantly.

  5. Keep Systems Updated: Apply the latest patches for Windows Server and RDS to protect against vulnerabilities.

Conclusion

Installing and configuring Remote Desktop Services on Windows Server 2022 allows organizations to centralize applications and desktops while enabling secure remote access for users. From initial installation of the RDS role to configuring licensing, gateways, and publishing resources, the process is straightforward with Server Manager’s deployment wizards.

By following best practices such as enabling SSL, managing group policies, and planning for scalability, businesses can provide a reliable and secure remote working solution. Whether you’re setting up a small office server or preparing a larger enterprise deployment, RDS in Windows Server 2022 remains a robust platform for remote productivity.

Comments

Post a Comment

Popular posts from this blog

How to Connect to a Linux Server from Windows Using MobaXterm

Image
   Introduction Connecting to a  Linux server from a Windows machine  is a common task for system administrators, developers, and IT professionals. MobaXterm is a powerful terminal software that provides an all-in-one solution for remote computing. It supports SSH (Secure Shell), X11 forwarding, and other network protocols, making it an excellent choice for managing Linux servers from Windows. This guide will walk you through downloading, installing, and using MobaXterm to connect to a Linux server. Step 1: Download and Install MobaXterm Download MobaXterm Open a web browser on your Windows machine. Visit the official MobaXterm website:  https://mobaxterm.mobatek.net/ Click on the "Download" button. Choose either the "Home Edition" (free version) or the "Professional Edition" (paid version with additional features). Download the installer or the portable version, depending on your preference. Install MobaXterm If you downloaded the installer, double-click ...
Read more

How to Allow Remote Desktop Connections on Windows 7

Image
Remote Desktop Protocol (RDP) is a convenient feature built into Windows operating systems. It allows users to access and control another computer remotely over a network. For businesses and individuals still using Windows 7, enabling Remote Desktop connections can be essential for managing systems from a distance, troubleshooting, or working collaboratively. In this article, we’ll guide you through the steps to enable Remote Desktop connections on Windows 7, discuss security best practices, and troubleshoot common issues you might encounter. What is a Remote Desktop? Remote Desktop is a Microsoft feature that allows users to connect to a Windows computer remotely and interact with it as if they were sitting in front of it. This is achieved using the Remote Desktop Protocol (RDP). It is widely used for: Remote system administration. Accessing files and applications from another location. Offering technical support. In Windows 7, the Remote Desktop feature is available in the Profession...
Read more

How to Secure a Windows VPS from Hackers: A Comprehensive Guide

Image
A Windows Virtual Private Server (VPS) offers the flexibility to host websites, and applications, or manage remote workloads. However, its constant internet exposure makes it an attractive target for hackers. Cyberattacks, including brute force attacks, malware infections, and unauthorized access, can compromise your VPS if proper security measures are not in place. This article provides an in-depth guide on securing a Windows VPS from hackers and ensuring the safety of your data and operations. Understanding the Threats Hackers use a variety of techniques to compromise VPS environments, including: Brute Force Attacks: Automated bots systematically try passwords to gain unauthorized access. Exploitation of Vulnerabilities: Hackers exploit outdated software and unpatched vulnerabilities. Ransomware and Malware: Malicious software can encrypt data or take control of the server. Phishing and Social Engineering: Weak user practices may inadvertently grant hackers access. Addressing th...
Read more