Solved

Windows 2008 RDS old autosign certificate steal used as a trusted certificate has benn installed

Posted on 2011-03-14
6
594 Views
Last Modified: 2013-12-24
Hi,

I have installed an RDS server with these roles :
- RD Session host
- RD Web access
- RDGateway

Waiting for a trusted certificate, i installed a self signed certificate : "mycomputer.mydomain.com". All the roles were fonctionning with the normal warning "computer not safe, can't verify certificate"

I finaly got my trusted certificate "mysite.mydomain.com", and configured it in remote app, rd session, rd gateway... The trusted certifcate appear clearly in IE browser, the connection occured without warning. But when I run a remote app, the old self signed certificate is steal in used...

I have checked all configuration I know, I can't find any notice of the old self signed certificate !...

Any Idea of cache, or a mystery hidden certificate configuration ...

Thanks a lot !
0
Comment
Question by:stconseil
  • 4
  • 2
6 Comments
 
LVL 59

Accepted Solution

by:
Darius Ghassem earned 500 total points
ID: 35131006
0
 

Assisted Solution

by:stconseil
stconseil earned 0 total points
ID: 35131465
Thanks for you answer...

The old self signed certificat was steal in remote desktop certificates store. I removed It and import the trusted certificate. The import worked , but the self signed certificate always come back in this store. The self signed certificate is only visible in this store, Remote desktop...

Know, the authentication of the user steal worked to log in the rd web page, but fail when i launch a remote app...

I'm searching and trying again...
0
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 35131659
Remove from IIS and any other location as well
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

 

Assisted Solution

by:stconseil
stconseil earned 0 total points
ID: 35131708
The self signed certifcate was only in the remote desktop store...

I've found another way to modify the remote desktop certificate :

http://blogs.nelite.com/blogs/yvarloud/archive/2010/04/05/windows-server-2008-amp-r2-remote-desktop-services-certificate.aspx

I'll try...
0
 

Author Comment

by:stconseil
ID: 35132380

It works !!

Thanks to dariusq...
0
 

Author Closing Comment

by:stconseil
ID: 35171000
0

Featured Post

Free Tool: Postgres Monitoring System

A PHP and Perl based system to collect and display usage statistics from PostgreSQL databases.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
How to allow UDP8090 protocol in MTG 2010 1 26
Reverse DND setup 6 38
Modify Permissions in Windows Folders. 15 36
Corrupt / Encrypted Word Documents 6 32
Whether you believe the “gig economy,” as it has been dubbed, is the next big economic paradigm shift (https://www.theguardian.com/commentisfree/2015/jul/26/will-we-get-by-gig-economy) or an overstated trend (http://www.wsj.com/articles/proof-of-a-g…
OfficeMate Freezes on login or does not load after login credentials are input.
The Bounty Board allows you to request an article or video on any technical topic, or fulfill a bounty request to earn points. Watch this video to learn how to use the Bounty Board to get the content you want, earn points, and browse submitted bount…
Articles on a wide range of technology and professional topics are available on Experts Exchange. These resources are written by members, for members, and can be written about any topic you feel passionate about. Learn how to best write an article t…

828 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question