Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Windows 2008 RDS old autosign certificate steal used as a trusted certificate has benn installed

Posted on 2011-03-14
6
Medium Priority
?
601 Views
Last Modified: 2013-12-24
Hi,

I have installed an RDS server with these roles :
- RD Session host
- RD Web access
- RDGateway

Waiting for a trusted certificate, i installed a self signed certificate : "mycomputer.mydomain.com". All the roles were fonctionning with the normal warning "computer not safe, can't verify certificate"

I finaly got my trusted certificate "mysite.mydomain.com", and configured it in remote app, rd session, rd gateway... The trusted certifcate appear clearly in IE browser, the connection occured without warning. But when I run a remote app, the old self signed certificate is steal in used...

I have checked all configuration I know, I can't find any notice of the old self signed certificate !...

Any Idea of cache, or a mystery hidden certificate configuration ...

Thanks a lot !
0
Comment
Question by:stconseil
  • 4
  • 2
6 Comments
 
LVL 59

Accepted Solution

by:
Darius Ghassem earned 2000 total points
ID: 35131006
0
 

Assisted Solution

by:stconseil
stconseil earned 0 total points
ID: 35131465
Thanks for you answer...

The old self signed certificat was steal in remote desktop certificates store. I removed It and import the trusted certificate. The import worked , but the self signed certificate always come back in this store. The self signed certificate is only visible in this store, Remote desktop...

Know, the authentication of the user steal worked to log in the rd web page, but fail when i launch a remote app...

I'm searching and trying again...
0
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 35131659
Remove from IIS and any other location as well
0
Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

 

Assisted Solution

by:stconseil
stconseil earned 0 total points
ID: 35131708
The self signed certifcate was only in the remote desktop store...

I've found another way to modify the remote desktop certificate :

http://blogs.nelite.com/blogs/yvarloud/archive/2010/04/05/windows-server-2008-amp-r2-remote-desktop-services-certificate.aspx

I'll try...
0
 

Author Comment

by:stconseil
ID: 35132380

It works !!

Thanks to dariusq...
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Digital marketing agencies have encountered both the opportunities and difficulties that emerge from working with a wide-ranging organizations.
As computers become more powerful, jobs will be replaced with artificial intelligence, leaving no place in the future for humans in the workforce. In the oncoming technological revolution, the staggering change to human mind labor will prove the ski…
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
This tutorial will show how to configure a new Backup Exec 2012 server and move an existing database to that server with the use of the BEUtility. Install Backup Exec 2012 on the new server and apply all of the latest hotfixes and service packs. The…

972 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question