?
Solved

Remote Desktop Services - Windows 2008 R2 Server Certificates

Posted on 2011-02-16
2
Medium Priority
?
938 Views
Last Modified: 2012-05-11
I need some information regarding certificates that will be needed for a Remote Desktop Services infrastructure. There does not seem to be a great deal of information on what is required and how to install the certs.

I have a Windows 2008 R2 Remote Desktop Services infrastructure containing two Session broker servers, two Virtualization host servers, two RD Connection Broker servers (in a failover cluster), one RD web server (long range plans are to have two servers configured with a hardware load balancer), and a RD Gateway server. The RD Gateway server will also contain two servers load balanced with a hardware load balancing. Initially, I will be installing and configuring everything but the RD gateway server which will be deployed at a later date.
I was thinking about using a UC or SAN cert for RD Services. Is this the proper certificate for RD Services? If so which server names would need to be placed in the certificate? How do I generate the CSR needed to generate the certificates? How do I import them into the various RDS servers?
0
Comment
Question by:pjess
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 23

Accepted Solution

by:
Malli Boppe earned 2000 total points
ID: 34967433
I was in similar boat ,really hard to find any info about RDS certifcates.
You can get away with just one certificate you don't need   a SAN certifcate.But if you want to you can use a SAN certificate inclusing the name of RDS farm,RD web and RD gateway names.
Or can use remote.domain.com and for you farm ,rdweb and rd gateway as well.

I had rdsgateway,sessionbroker and rdweb on the same server. with your case you might need to have different certifcates for each server as you have roles spread over.
0
 

Author Comment

by:pjess
ID: 34971461
Thanks for the feedback.

I was thinking about using a SAN cert containing all the server names in the RDS Environment rather than having to use private and public certs.  
0

Featured Post

Optimize your web performance

What's in the eBook?
- Full list of reasons for poor performance
- Ultimate measures to speed things up
- Primary web monitoring types
- KPIs you should be monitoring in order to increase your ROI

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I had a question today where the user wanted to know how to delete an SSL Certificate, so I thought that I would quickly add this How to! Article for your reference. WHY WOULD YOU WANT TO DELETE A CERTIFICATE? 1. If an incorrect certificate was …
I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…
Suggested Courses

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question