Well, some of our clients are familiar with RDP and specifically want to use RDP in the ways they are familiar with. So I don't think it makes sense to go down the Guacamole route, if you also have to secure rdp connections not using a web client.
Why would you need to secure RDP in addition to Guacamole? Guac doesn't expose RDP.
If using Window's RDP client in addition to Guacamole is still a requirement
Not even possible. Guacamole = web page, not RDP. That's what it is.
Right, what I was trying to say there is that I couldn't only use Guacamole and thus would still have the consideration of securing RDP
Why can't you just make people use Guac?
Really, I think that is the best solution. But this isn't really my project, and trying to take it that direction might be overstepping the line. Plus it would also probably end up making me the one who has to deploy it and maintain it, which isn't really my role right now.