There are certainly a number of great improvements with Windows Server 2019 and Remote Desktop Services that are found in the new Windows Server operating system. Microsoft has improved the solution across the board including from the administration side of things, end user experience, device redirection, video playback, and overall performance.

-->

Applies to: Windows Server (Semi-Annual Channel), Windows Server 2019, Windows Server 2016

Microsoft Remote Desktop Services 2019

Below are various configurations for deploying Remote Desktop Services to host Windows apps and desktops for end-users.

See full list on cloudblogs.microsoft.com. Each user or device accessing a licensed Windows Server requires a Windows Server CAL or a Windows Server and a Remote Desktop Services (RDS) CAL. With the User CAL, you purchase a CAL for every user who accesses the server to use services such as file storage or printing, regardless of the number of devices they use for that access. RDS architectures with unique Azure PaaS roles Applies to: Windows Server (Semi-Annual Channel), Windows Server 2019, Windows Server 2016 Below are various configurations for deploying Remote Desktop Services to host Windows apps and desktops for end-users.

Note

The architecture diagrams below show using RDS in Azure. However, you can deploy Remote Desktop Services on-premises and on other clouds. These diagrams are primarily intended to illustrate how the RDS roles are colocated and use other services.

Standard RDS deployment architectures

Remote Desktop Services has two standard architectures:

  • Basic deployment – This contains the minimum number of servers to create a fully effective RDS environment
  • Highly available deployment – This contains all necessary components to have the highest guaranteed uptime for your RDS environment

Microsoft Windows Remote Desktop Services 2019 - License

Basic deployment

Highly available deployment

RDS architectures with unique Azure PaaS roles

Though the standard RDS deployment architectures fit most scenarios, Azure continues to invest in first-party PaaS solutions that drive customer value. Below are some architectures showing how they incorporate with RDS.

RDS deployment with Azure AD Domain Services

The two standard architecture diagrams above are based on a traditional Active Directory (AD) deployed on a Windows Server VM. However, if you don't have a traditional AD and only have an Azure AD tenant—through services like Office365—but still want to leverage RDS, you can use Azure AD Domain Services to create a fully managed domain in your Azure IaaS environment that uses the same users that exist in your Azure AD tenant. This removes the complexity of manually syncing users and managing more virtual machines. Azure AD Domain Services can work in either deployment: basic or highly available.

RDS deployment with Azure AD Application Proxy

The two standard architecture diagrams above use the RD Web/Gateway servers as the Internet-facing entry point into the RDS system. For some environments, administrators would prefer to remove their own servers from the perimeter and instead use technologies that also provide additional security through reverse proxy technologies. The Azure AD Application Proxy PaaS role fits nicely with this scenario.

Microsoft Windows Remote Desktop Services 2019 - Licensing

For supported configurations and how to create this setup, see how to publish Remote Desktop with Azure AD Application Proxy.