Solved

Remote Desktop Services - Windows 2008 R2 Server Certificates

Posted on 2011-02-16
2
933 Views
Last Modified: 2012-05-11
I need some information regarding certificates that will be needed for a Remote Desktop Services infrastructure. There does not seem to be a great deal of information on what is required and how to install the certs.

I have a Windows 2008 R2 Remote Desktop Services infrastructure containing two Session broker servers, two Virtualization host servers, two RD Connection Broker servers (in a failover cluster), one RD web server (long range plans are to have two servers configured with a hardware load balancer), and a RD Gateway server. The RD Gateway server will also contain two servers load balanced with a hardware load balancing. Initially, I will be installing and configuring everything but the RD gateway server which will be deployed at a later date.
I was thinking about using a UC or SAN cert for RD Services. Is this the proper certificate for RD Services? If so which server names would need to be placed in the certificate? How do I generate the CSR needed to generate the certificates? How do I import them into the various RDS servers?
0
Comment
Question by:pjess
2 Comments
 
LVL 23

Accepted Solution

by:
Malli Boppe earned 500 total points
ID: 34967433
I was in similar boat ,really hard to find any info about RDS certifcates.
You can get away with just one certificate you don't need   a SAN certifcate.But if you want to you can use a SAN certificate inclusing the name of RDS farm,RD web and RD gateway names.
Or can use remote.domain.com and for you farm ,rdweb and rd gateway as well.

I had rdsgateway,sessionbroker and rdweb on the same server. with your case you might need to have different certifcates for each server as you have roles spread over.
0
 

Author Comment

by:pjess
ID: 34971461
Thanks for the feedback.

I was thinking about using a SAN cert containing all the server names in the RDS Environment rather than having to use private and public certs.  
0

Featured Post

Do email signature updates give you a headache?

Constantly trying to correctly format email signatures? Spending all of your time at every user’s desk to make updates? Want high-quality HTML signatures on all devices, including on mobiles and Macs? Then, let Exclaimer solve all your email signature problems today!

Join & Write a Comment

I had a question today where the user wanted to know how to delete an SSL Certificate, so I thought that I would quickly add this How to! Article for your reference. WHY WOULD YOU WANT TO DELETE A CERTIFICATE? 1. If an incorrect certificate was …
OfficeMate Freezes on login or does not load after login credentials are input.
This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now