Recently came across this problem on a SBS 2008 deployment (just missed the SBS 2011 release), where users who were trying to connect to their computers using the Remote Web Workplace, but were unable and were getting this error:
An internal error has occurred (error 50331688). For more information, please
contact your network administrator or Microsoft Product Support.
Turns out the problem is related to the Terminal Services Gateway not having a certificate configured.
To resolve this follow these steps:
- Open TS Gateway Manager MMC
- Select your server in the Left hand pane
- In the Middle pane, click “View or modify certificate properties”
- Click “Select an existing Certificate for SSL encryption (recommended)”
- Click “Browse Certificates….”
- Select the correct 3rd party certificate from the list, and then click “Install”
- Click “Apply”, and then try to connect via RWW again.
This should also resolve any issues you have when trying to connect in via RDP when using a Terminal Services Gateway.
SBS 2008 doesn’t have to have an SSL certificate on the TS Gateway, as the connection is supposed to be secured by using the SBS Sharepoint site’s certificate on port 987. Checking SBS Sharepoint’s SSL bindings for the proper certificate should fix this error without taking the server out of SBS configuration.
Worked for me and I was only renewing a certificate, what a headache!
Very clear instructions. My users and I thank you!
Sean, worked for me and my client, thank you again.
Thanks a lot…perfect and clear instructions. Fixed my problem in no time at all.
Thanks, worked perfectly!
Great note, concise, not a bunch of jibber jabber. Straight to the point, accurate enough for me. I completely forgot about the TS GW certificate. Renewed the SBS cert over the weekend in prep for migrating to Office365. Two remote users, one big headache 🙂 Thanks!
Worked like a charm, thank you!
Worked like a charm. Thank You! Thank You!
This was exactly what I needed. I could not understand why a new user account I created was unable to access the remote workstation even though the user had RWW enabled with the workstation selected.