Solved

Windows 2008 R2 Certificate for Remote Desktop Expiring, how to handle this?

Posted on 2014-11-04
5
285 Views
Last Modified: 2014-11-04
On Windows Server 2008 R2 I was reviewing my certificates and I noticed that the remote desktop certificate is expiring soon.  It is a non trusted certificate according to the mmc.  I never had to renew anything in regards to this on Windows 2003.  Need to know if I have to renew this or replace it and how so that I can still remote into this server after this expires.  Or maybe there is no impact. Can someone please help me with this.  Thanks.
0
Comment
Question by:kdschool
  • 3
  • 2
5 Comments
 
LVL 9

Expert Comment

by:bas2754
ID: 40421552
Answer from here: https://social.technet.microsoft.com/Forums/windowsserver/en-US/1b528a7b-882a-4dc0-bb63-e36968cc284d/selfsigned-certificate-for-remote-desktop-expired?forum=winserverTS

"Turns out restarting the Remote Desktop Configuration service will renew the certificate if it is expired. I did not have to delete it first however I did test on another server by deleting it then restarting the service. It still properly created the certificate. Doing so generates an event log message:"
0
 

Author Comment

by:kdschool
ID: 40421718
So I think he is saying that if I just restart the remote desktop service AFTER it expires that would fix this.  Is that what you think will work.  I tried it wihtout it actually expiring and no change to the certificate occured??
0
 
LVL 9

Accepted Solution

by:
bas2754 earned 500 total points
ID: 40421858
In one case we deleted the soon to expire certificate from the Certificate Management Console -> Computer Account and then restarted the service and a new certificate was created.  So you can manually delete the certificate and restart and it will create a new one as well.

It will not create a new certificate until the one that is there is either deleted or expired.
0
 

Author Comment

by:kdschool
ID: 40422396
Well that did work. I deleted it and it recreated it but it gave me the same time lenght.  I guess I will have to do this again when it expires. This information was a great help. Thank you.
0
 

Author Closing Comment

by:kdschool
ID: 40422397
Excellent Answer.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Imagine a situation that you have installed SSL (http://en.wikipedia.org/wiki/Secure_Sockets_Layer) Certificate on your Cisco ASA (Cisco Adaptive Security Appliance) firewall. Installation of SSL certificate on ASA is an another topic for which you …
OfficeMate Freezes on login or does not load after login credentials are input.
This tutorial will show how to push an installation of Backup Exec to an additional server in both 2012 and 2014 versions of the software. Click on the Backup Exec button in the upper left corner. From here, select Installation and Licensing, then I…
This tutorial will walk an individual through the steps necessary to configure their installation of BackupExec 2012 to use network shared disk space. Verify that the path to the shared storage is valid and that data can be written to that location:…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now