Solved

The digital signature of this RDP file cannot be verified

Posted on 2014-04-15
13
5,577 Views
Last Modified: 2014-05-04
I am running server 2012 remote desktop services with a separate server for  the connection broker, webaccess, Session host for remoteApps, and session host for Remote Desktop.

Everything was running fine until this morning, then I starting having an issue with runnung the RDWeb Remote Desktop Access app. As soon as it is chosen I get the following message block:

The digital signature of this RDP File cannot be verified. The remote connection cannot be started.

I have trusted SSL certificate purchased and installed, but they were not on the server with Session Host for Remote Desktop. I am assuming the self-signed certificate expired. Now I have installed the trusted certificate on this server.

While researching, it seems to me what I need to do is recreate the Remote Desktop App with the correct thumbprint. But I cannot determine where this app resides, or how to remove / reinstall it.

Am I on the right track? If so, how do I remove / reinstall this app?

Thanks
Bob Pahls
0
Comment
Question by:e-Tec_Support
  • 8
  • 5
13 Comments
 
LVL 17

Expert Comment

by:Brad Bouchard
Comment Utility
Bob,

I'd say you're on the right track given the information you've shared with us.  To do what you need to do isn't hard.  Do this:

1)  You will find the server that created the remote app by going to it (the server) and opening up Administrative Tools > Remote Desktop Services > RemoteApp Manager
(*a hint here is that if the server you check on doesn't have RemoteApp Manager, then it is not the one you're looking for)
2)  If you find the server you're looking for you'll see the RemoteApp that you use listed in the RemoteApp Programs section towards the bottom of the screen.  From there, right click the app and select Remove.
3)  Finally on the right hand side, and after you've completed step 2, click on Add RemoteApp Programs and follow the Wizard.  It's very simple and will publish a new app with your new cert.

Let me know if you need more help.
0
 
LVL 1

Author Comment

by:e-Tec_Support
Comment Utility
Brad, Thanks for getting back to me.

So here's where I'm at.
Server7 is the RD Connection broker.
Server8 is the RD Web Access
Server9 is the session host for the RemoteApps
Server6 is the session host for the Remote Desktop

On Server7 under the RDS, I have the Remote Desktop Gateway manager.
On Server8 under the RDS, I have the Remote Desktop Licensing Manager
On Server9 under the RDS, I have the RD Licensing Diagnoser
On Server6 under the RDS, I have the RD Licensing Diagnoser

The only place I get to anything involving RemoteApps is through the Server Manager, Remote Desktop Services, Collections, RemoteApps. But in the RemoteApps programs section there is no Remote Desktop Application app. This is where I'm stuck.
Is there somewhere else I should be looking for this "app"? Or is it part of a built-in selection of some sort when you set up RDS on the 2012 servers?

Bob Pahls
0
 
LVL 17

Expert Comment

by:Brad Bouchard
Comment Utility
I forgot to mention this:
The Remote App Manager no longer exists in Windows Server 2012. Management of Remote Apps in Windows Server 2012 has been moved to the central Server Manager console as part of the Remote Desktop Services section.
Per this link:  http://www.virtualizationadmin.com/articles-tutorials/vdi-articles/general/distribution-of-remote-apps-and-desktops-in-windows-server-2012.html

But, there is a way on that link that will help you distribute the RDP files if you need to distribute them to  your users so they see an icon.

Is there somewhere else I should be looking for this "app"?
Look in Server Manager on your servers.  You will see something like this:

remoteappservermanager
0
 
LVL 1

Author Comment

by:e-Tec_Support
Comment Utility
I have the RemoteApp Programs window, found that OK. But there is no "Remote Desktop Access" program there. This is where I am confused.

Bob Pahls
0
 
LVL 17

Expert Comment

by:Brad Bouchard
Comment Utility
Ok, you are either trying to use the Remote Connection portion of RDWeb, or you are trying to access the RDP file that someone extracted from a RemoteApp.  Try following this:  http://www.virtualizationadmin.com/articles-tutorials/vdi-articles/general/distribution-of-remote-apps-and-desktops-in-windows-server-2012.html

Specifically the section that starts at Distributing Remote Apps and Desktops with Windows Server 2012

Go down to the subsection titled Manual distribution

If that doesn't work then you're referring to RDWeb Remote Connection and we can deal with that separately.

Report back.
0
 
LVL 17

Expert Comment

by:Brad Bouchard
Comment Utility
If that doesn't work then you're referring to RDWeb Remote Connection and we can deal with that separately.

And just to be clear, users are used to having an icon on the RDWeb or on their desktop that they click on that takes them to a terminal session right?

Or does the screen they connect to look like this?

rdweb
0
Integrate social media with email signatures

Is your company active on social media? Do you also use email signatures? Including social media icons in your email signature is a great way to get fans for free. Let all your email users know you’re on social media quickly and easily, in a single click.

 
LVL 1

Author Comment

by:e-Tec_Support
Comment Utility
They log in through the screen you shares in your last post, then after they are logged in they have their apps. One of the apps is "Remote Desktop Access" See attached.

When they choose the "Remote Desktop Access" app, they then get the error.  see attached.

I will look at your other information now.

Thanks
Bob Pahls
RDP-Screens.PNG
0
 
LVL 1

Author Comment

by:e-Tec_Support
Comment Utility
That link doesn't seem to pertain to what I am seeing.

Of interest is if the person that logged in chooses the "Connect to a remote PC" ?tab? at the top of the page, and then enters the "remote.server.com" they get connected with no issues.

Attached is a look at the RemoteApp manager
RemoteApp-view.PNG
0
 
LVL 17

Expert Comment

by:Brad Bouchard
Comment Utility
You will have to do what my link says in the section where it is labeled Manual Distribution.  The reason for this is that it creates the .RDP file which your users are seeing on their desktops called Remote Desktop Access.
0
 
LVL 1

Author Comment

by:e-Tec_Support
Comment Utility
Took a couple days vacation. Back o it today. Will try the manual method.
0
 
LVL 1

Author Comment

by:e-Tec_Support
Comment Utility
So here's the problem. The Remote Desktop access "app" is not in my list of RemoteApp programs. So I cannot delete it manually. And the instructions state that the option is no longer available for server2012.

So again, i will ask, How do remove this app from the remote desktop page so I can then re-create it on a Server2012 RDP?
0
 
LVL 1

Accepted Solution

by:
e-Tec_Support earned 0 total points
Comment Utility
Here is how I eventually fixed my issue. Under the Remote Desktop Services | Collections I had RemoteDesktop and RemoteApps with one server assigned to each collection. I removed the RemoteDesktop collection and unassigned the server attached to it. This cleared my RDWeb screen of the Remote Desktop Access app that was failing.

Then I added the "free" server to the RemoteApps collection and set load balancing between the 2 servers now in that collection (made more sense to me to utilize the server in this way)

Then I created a new RemoteApp Program  called Remote Desktop Access pointing to mstsc.exe and set parameters to use command line parameters to the server I wanted to remote desktop into. (the server I removed from the remotedesktop collection)

Now I have a pool of 2 servers that share the RemoteApps and still have the Remote Access app to connect to the desktop.

Thanks for the help
Bob Pahls
0
 
LVL 1

Author Closing Comment

by:e-Tec_Support
Comment Utility
Gave the reason for the issue. Gave a good resolution that actually improved performance while still giving the end user all the function of before.
0

Featured Post

What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

Join & Write a Comment

You might have come across a situation when you have Exchange 2013 server in two different sites (Production and DR). After adding the Database copy in ECP console it displays Database copy status unknown for the DR exchange server. Issue is strange…
A procedure for exporting installed hotfix details of remote computers using powershell
In this Micro Tutorial viewers will learn how to use Windows Server Backup to create full image of their system. Tutorial shows how to install Windows Server Backup Feature on Windows 2012R2 and how to configure scheduled Bare Metal Recovery backup.…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now