• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 748
  • Last Modified:

Trouble with certificate when connecting to an RDP file

Hello Terminal Services Experts,

I’m trying to learn Terminal Services in Windows Server 2008.  I have read several articles and the Terminal Services chapters in various books, but I know there is no substitute for getting my hands dirty and playing with Terminal Services in a lab.  I have installed Terminal Server on a Windows Server 2008 system in a test lab.  I decided that a good place to start would be to try out the RemoteApp feature.  One of the articles I have read provided the steps to make the calculator on the server a remote app.  I followed the steps in the article and made a RDP file for the server’s calculator.  When I try to access this RDP file, I get the following message.

Your remote desktop connection failed because the remote computer cannot be authenticated.

The certificate is not from a trusted authority.

The client that I’m using is an XP Pro workstation with SP3 installed.  However, when I try to connect to the RDP file from the terminal services server, I get the same message.  I have verified that the NLA is not enabled on the terminal services server.  

Any help with this would be greatly appreciated.

Regards,
Nick
0
ndalmolin_13
Asked:
ndalmolin_13
1 Solution
 
linrafCommented:
On the RDP client on the xp machine.
Options
Advanced
If server authentication fails
If you set this to warn me, I believe it will give you a notice, but ask you if you want to connect.

You should also be able to install the certifacate in internet explorer to make it  a trusted cert.
0
 
Alex AppletonBusiness Technology AnalystCommented:
This is an expected outcome.  Sounds to me like you are using a self-signed certificate.

On the terminal server, open the terminal server configuration snap-in and check the properties of the rdp-tcp.  Under the general tab at the bottom is the listed certificate for the connection.  I think default is self-signed.  

For a lab, make another server a CA and generate a certificate request from your TS to sign the connection.  In a real world deployment you are going to want to use a 3rd party CA to accomplish this task.
0
 
ndalmolin_13Author Commented:
Is there a way to configure the terminal server to not use a certificate in the lab?
0

Featured Post

2018 Annual Membership Survey

Here at Experts Exchange, we strive to give members the best experience. Help us improve the site by taking this survey today! (Bonus: Be entered to win a great tech prize for participating!)

Tackle projects and never again get stuck behind a technical roadblock.
Join Now