Creating Terminal Server Farm Certificate

Posted on 2009-12-25
Last Modified: 2012-05-08
I have a scenero where I am creating a IAS Server connecting over 443 to a TS Gateway which connects to a NLM based Terminal Server Farm.  I am having problems with Windows XP clients prompting with the certificate does not match.  I turned off Authentication for the Gateway for now but would like to fix this.  I have a local CA within my company and have created Certificate with TS Farm name in the subject title and used Alt Names for the Terminal Server Resources.  I added newly created Certificate in the local store of each terminal server and can not manage to change the auto assigned certificate.  When I launch Terminal Server Config and select RDP, the certificate does not show in the list.  Can you please help me in what is wrong?

Question by:GoVirtualGuy
    LVL 35

    Expert Comment

    by:Cris Hanna
    You have listed Small Business Server and Windows Home Server as zones for this question.  Are you using SBS Server?  If so which version?

    Author Comment

    I am currently using Windows 2008 R2 64Bit

    Author Comment

    This has been resolved, I created a Certificate with San Alais, and used mmc snap in to import.


    Accepted Solution

    I figured out the solution, I recreated the Certificate and imported the certificate within the MMC snapin \Certificates.  After importing the certificate as a Personal Information Exchange-PKCS#12 I was able to change the auto enrollered certificate to the newly created certificate.  The other problem encountered was getting a san certificate recognized by isa server.  Apparently you need to apply the latest SP1 to fix the problem with san certificates.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    How your wiki can always stay up-to-date

    Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
    - Increase transparency
    - Onboard new hires faster
    - Access from mobile/offline

    On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
    The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
    This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
    This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…

    759 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    12 Experts available now in Live!

    Get 1:1 Help Now