Solved

Remote Desktop Services - Windows 2008 R2 Server Certificates

Posted on 2011-02-16
2
936 Views
Last Modified: 2012-05-11
I need some information regarding certificates that will be needed for a Remote Desktop Services infrastructure. There does not seem to be a great deal of information on what is required and how to install the certs.

I have a Windows 2008 R2 Remote Desktop Services infrastructure containing two Session broker servers, two Virtualization host servers, two RD Connection Broker servers (in a failover cluster), one RD web server (long range plans are to have two servers configured with a hardware load balancer), and a RD Gateway server. The RD Gateway server will also contain two servers load balanced with a hardware load balancing. Initially, I will be installing and configuring everything but the RD gateway server which will be deployed at a later date.
I was thinking about using a UC or SAN cert for RD Services. Is this the proper certificate for RD Services? If so which server names would need to be placed in the certificate? How do I generate the CSR needed to generate the certificates? How do I import them into the various RDS servers?
0
Comment
Question by:pjess
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 23

Accepted Solution

by:
Malli Boppe earned 500 total points
ID: 34967433
I was in similar boat ,really hard to find any info about RDS certifcates.
You can get away with just one certificate you don't need   a SAN certifcate.But if you want to you can use a SAN certificate inclusing the name of RDS farm,RD web and RD gateway names.
Or can use remote.domain.com and for you farm ,rdweb and rd gateway as well.

I had rdsgateway,sessionbroker and rdweb on the same server. with your case you might need to have different certifcates for each server as you have roles spread over.
0
 

Author Comment

by:pjess
ID: 34971461
Thanks for the feedback.

I was thinking about using a SAN cert containing all the server names in the RDS Environment rather than having to use private and public certs.  
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Sometimes drives fill up and we don't know why.  If you don't understand the best way to use the tools available, you may end up being stumped as to why your drive says it's not full when you have no space left!  Here's how you can find out...
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question