Win2k3 TS, clients RDC RDP WinXP.
Looking at TLS 1.0 for server authentication
1a. Will ALL RDC clients have to obtain and use the certificate, or just those that choose to? Is there a cost for them?
1b. Will ALL RDC clients have to use RDC RDP 5.2 from the Win2k3, I think most XP PCs use 5.1?
Certifcate?: On the TS Box I found the MMC Certificate screens.
2a. I see a lot of cerificates already there (out of the box Win2k3), will any of these do TLS?
2b. Do I have to buy something? How? Where? $?
2c. I tried the Certificate Request Wizard via the MMC and get a red X dialog "There are no trusted CAs available". What does that mean I have to do?
2d. I'm gathering that there are more than one certificate to choose from. I'd lean toward easy and cheap. Does MS supply/sell certificates themselves?
2e. Is SSL in this picture?
2f. Does any of this add any significient resource drain on the server?
I've read the MS article "How to configure a Windows Server 2003 terminal server to use TLS for server authentication" (http://support.microsoft.com/default.aspx?scid=kb%3Ben-us%3B895433
) , but I still confused about the basics of certificates. The MS link to "Microsoft Cryptographic Service Providers" (http://msdn.microsoft.com/library/default.asp?url=/library/en-us/seccrypto/security/microsoft_cryptographic_service_providers.asp
) just left me more cunfused.
If I get further into this, and decide I gotta back out, can I undo everything?
Be gentle. Newbie with a lot of questions. 500 Points.