Solved

Remote Desktop Services certificate 2012 R2

Posted on 2014-01-17
5
2,509 Views
Last Modified: 2014-01-19
I am trying to find a step by step article on installing a certificate for Remote Desktop Services on Server 2012 R2.

I have seen some say that you can't use a Godaddy certificate.

I assume if I use a self assigned certificate, users would need to install it on their computer or they would not be able to connect.
0
Comment
Question by:ajdratch
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 37

Expert Comment

by:Mahesh
ID: 39789901
The certificate common name must be matching to FQDN of RDP server \ RD gateway and its issuing authority root certificate need to be installed on trusted root cert store on client computers in order to get access.

I don't see any reason for not working certificates from Public CA

Mahesh
0
 

Author Comment

by:ajdratch
ID: 39792357
I added a godaddy certificate on the server using mmc - certificates. I originally tried adding the cert through IIS. I got access denied. I saw a lot of post for this issue but no resolution. That is why I did it through MMC

Now I can no longer get to ts.domain.com/rdweb

I tried adding the certificates in "configure the deployment"  but it only excepts PFX certificates.  I think that is why someone said a godaddy cert will not work.

Now I have a SSL certificate on the server. It shows in IIS however I can no longer access that site and I cannot add it to the RDS certificates

Could they have made this is more difficult
0
 
LVL 37

Accepted Solution

by:
Mahesh earned 500 total points
ID: 39792395
In order to use web site with SSL, certificate must have private key associated with it.

Have you requested certificate from RD Web server ?

Just double click certificate in Certificate personnel store MMC and check at bottom if "You have private key that corresponds to this certificate".
If its not written there, then it means you don't have full certificate and you just have public key of cert which is not acceptable to IIS and RD gateway site as well

If you have requested certificate from else machine server, you  must need to install it on that machine 1st in Personnel certificate store MMC and from there you need to export it in PFX format with private key and then you can install it on RD Gateway server

Also you have to have local admin rights on RD gateway server in order to install it in IIS

Mahesh
0
 

Author Comment

by:ajdratch
ID: 39792470
It does say I have a private key
0
 

Author Closing Comment

by:ajdratch
ID: 39792473
I had it all correct but I had not imported the certificate into to RD gateway manager
0

Featured Post

Ransomware: The New Cyber Threat & How to Stop It

This infographic explains ransomware, type of malware that blocks access to your files or your systems and holds them hostage until a ransom is paid. It also examines the different types of ransomware and explains what you can do to thwart this sinister online threat.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Background Information Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
Sometimes drives fill up and we don't know why.  If you don't understand the best way to use the tools available, you may end up being stumped as to why your drive says it's not full when you have no space left!  Here's how you can find out...
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
This tutorial will walk an individual through the process of installing of Data Protection Manager on a server running Windows Server 2012 R2, including the prerequisites. Microsoft .Net 3.5 is required. To install this feature, go to Server Manager…

626 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question