Hi,
I'm working on an image to deploy to about 20 t420 thin clients. The clients conenct to a Windows Server 2012 R2 RDS Farm. I've got everything working, except for an easy way to deal with expired passwords.
I was considering using the web based method, but I havent been able to restrict internet access to only the password change website. Although it could be technically possible for us to add firewall rules at each location, it would be nicer to avoid that if possible.
I tried enabling the "Allow Smartcard Login" option, and it works, BUT it make the users sign in twice (Once on the broker, once on the actual host). I assume this is because we don't use a gateway?
I think the built in password change feature will work, but then users have to know what to enter in the domain controller field. Is there a way to pre-fill and hide the "Domain controller" field, much like you can do when configuring a RDP connection?
Thanks,
Dustin