RemoteApp Server SSL Certificate

I am trying to set up Remote Desktop Web Access to publish a single application.  All is working well except for a small  problem.  After logging in, I can click on the application.  It allows my to accept the publisher of the remote app, but then tells me that the certificate on the remote server is not trusted.  (see attached image)

I have an ssl certificate now that will work, but I am not sure where to apply it or swap with my new one.

Can someone tell me how to reconfigure the remote host ssl cert?

thanks
ssl-problem.jpg
lstankeAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

gschmidt1Commented:
In the RemoteApp Manager, do you have the Digital Signature Settings set up? There should be a green check mark next to the Signing As: (Server listed on cert). If it's a yellow shield, then click on Change next to the Digital Signature Settings header, and the click Change to find your cert.

Is it a self-signed cert? If it is, then that's where it's probably running into trouble. All you need to do is install the cert on your client machines under Trusted Root Authority Store, and it should take care of it. If you click on the View Certificate in that window, you should be able to do that from there.
0
lstankeAuthor Commented:
The .rdp file is digitally signed with a certificate.  It is not self signed.  

I dont believe this is the problem area.  I am presented with a window that acknowleges the publisher of the remoteapp and once I click to accept that the app can run locally I get this second pop up.

As it says, the cert is associated with the server and it gives me the full FQDN of the box that hosts the remoteapp.  This cert is self signed and I can see it under the Remote Desktop folder of my Certificates snap in.

This application will be used externally by my clients. So, I need to swap the self signed cert with a real trusted certificate. I am just not sure where it is that you do this.
0
gschmidt1Commented:
Are these the instructions you're looking for?

http://www.sslshopper.com/article-installing-an-ssl-certificate-in-windows-server-2008-iis-7.0.html

You just need to install the new cert, correct? Or have you done that already and are still having issues?

0
Cláudio RodriguesFounder and CEOCommented:
You must select the certificate you want for the RDP-tcp listener. That is the issue.
Launch '‘Remote Desktop Session Host Configuration' and double click RDP-tcp. You will see on the window that pops up the place to select the certificate you want.

Cláudio Rodrigues
Citrix CTP
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
lstankeAuthor Commented:
Thats it!  thanks
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Server OS

From novice to tech pro — start learning today.