Solved

Remote Desktop Services - Windows 2008 R2 Server Certificates

Posted on 2011-02-16
2
934 Views
Last Modified: 2012-05-11
I need some information regarding certificates that will be needed for a Remote Desktop Services infrastructure. There does not seem to be a great deal of information on what is required and how to install the certs.

I have a Windows 2008 R2 Remote Desktop Services infrastructure containing two Session broker servers, two Virtualization host servers, two RD Connection Broker servers (in a failover cluster), one RD web server (long range plans are to have two servers configured with a hardware load balancer), and a RD Gateway server. The RD Gateway server will also contain two servers load balanced with a hardware load balancing. Initially, I will be installing and configuring everything but the RD gateway server which will be deployed at a later date.
I was thinking about using a UC or SAN cert for RD Services. Is this the proper certificate for RD Services? If so which server names would need to be placed in the certificate? How do I generate the CSR needed to generate the certificates? How do I import them into the various RDS servers?
0
Comment
Question by:pjess
2 Comments
 
LVL 23

Accepted Solution

by:
Malli Boppe earned 500 total points
ID: 34967433
I was in similar boat ,really hard to find any info about RDS certifcates.
You can get away with just one certificate you don't need   a SAN certifcate.But if you want to you can use a SAN certificate inclusing the name of RDS farm,RD web and RD gateway names.
Or can use remote.domain.com and for you farm ,rdweb and rd gateway as well.

I had rdsgateway,sessionbroker and rdweb on the same server. with your case you might need to have different certifcates for each server as you have roles spread over.
0
 

Author Comment

by:pjess
ID: 34971461
Thanks for the feedback.

I was thinking about using a SAN cert containing all the server names in the RDS Environment rather than having to use private and public certs.  
0

Featured Post

Are your end users making ugly email signatures?

Have you left it up to your end users to create their own email signatures? Are they forgetting to add the company logo or using garish font colors? Take control and ensure all users have the same email signature.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I have been working as System Administrators since 2003. I recently started working as a FreeLancer and was amazed to find out that very few people are taking full advantage of their Windows Server Machines. Microsoft Windows Server comes with so…
The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…
This tutorial will walk an individual through the steps necessary to install and configure the Windows Server Backup Utility. Directly connect an external storage device such as a USB drive, or CD\DVD burner: If the device is a USB drive, ensure i…

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now