Securing RDP and TS Web connections to server
Posted on 2010-01-03
I have a newly installed Windows Server 2003 Enterprise server running terminal server in application server mode. I have all the apps installed and working fine. I now want to secure connections to this server so I can provide access from the internet. I ran MMC and added the "certificates" snap-in so I could run the CRW. The certificates MMC on local computer shows the "personal" folder but no certificates appear under personal. When I right-click on "personal" and go to all tasks-request new certificate, I get the following message:
The wizard cannot be started because of one or more of the following conditions:
1) There are no trusted CA's available
2) you do not have the permissions to request certs from the available CA's
3) The available CA's issue certs for which you do not have permissions.
How can I generate a certificate request to secure RDP? I'm going to use Thawte certs so I don't have to worry about trusted roots CA's on various remote clients. Do I get a standard SSL cert and will that support TLS? Finally, is it overkill if I'm not worried about server verification? In other words, will the standard RDP encryption be sufficient to secure client communications without exposing sensitive data to interception?
Thanks so much for your help!!