Solved

Remote Desktop Services - Windows 2008 R2 Server Certificates

Posted on 2011-02-16
2
937 Views
Last Modified: 2012-05-11
I need some information regarding certificates that will be needed for a Remote Desktop Services infrastructure. There does not seem to be a great deal of information on what is required and how to install the certs.

I have a Windows 2008 R2 Remote Desktop Services infrastructure containing two Session broker servers, two Virtualization host servers, two RD Connection Broker servers (in a failover cluster), one RD web server (long range plans are to have two servers configured with a hardware load balancer), and a RD Gateway server. The RD Gateway server will also contain two servers load balanced with a hardware load balancing. Initially, I will be installing and configuring everything but the RD gateway server which will be deployed at a later date.
I was thinking about using a UC or SAN cert for RD Services. Is this the proper certificate for RD Services? If so which server names would need to be placed in the certificate? How do I generate the CSR needed to generate the certificates? How do I import them into the various RDS servers?
0
Comment
Question by:pjess
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 23

Accepted Solution

by:
Malli Boppe earned 500 total points
ID: 34967433
I was in similar boat ,really hard to find any info about RDS certifcates.
You can get away with just one certificate you don't need   a SAN certifcate.But if you want to you can use a SAN certificate inclusing the name of RDS farm,RD web and RD gateway names.
Or can use remote.domain.com and for you farm ,rdweb and rd gateway as well.

I had rdsgateway,sessionbroker and rdweb on the same server. with your case you might need to have different certifcates for each server as you have roles spread over.
0
 

Author Comment

by:pjess
ID: 34971461
Thanks for the feedback.

I was thinking about using a SAN cert containing all the server names in the RDS Environment rather than having to use private and public certs.  
0

Featured Post

Free eBook: Backup on AWS

Everything you need to know about backup and disaster recovery with AWS, for FREE!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Scenario:  You do full backups to a internal hard drive in either product (SBS or Server 2008).  All goes well for a very long time.  One day, backups begin to fail with a message that the disk is full.  Your disk contains many, many more backups th…
You might have come across a situation when you have Exchange 2013 server in two different sites (Production and DR). After adding the Database copy in ECP console it displays Database copy status unknown for the DR exchange server. Issue is strange…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question