Solved

Require Client Certificates for RDS 2012

Posted on 2014-11-12
4
353 Views
Last Modified: 2014-11-12
Is it possible to require RDP clients connecting to RDS 2012 to have a client certificate?  I know the server has one.  But, I would like to add a bit more security than just username/password.  I also know that VPN is possible, but was looking for something a bit less cumbersome.
0
Comment
Question by:brhunt
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 81

Expert Comment

by:David Johnson, CD, MVP
ID: 40437671
The client machine must have a valid certificate requires you setup a certificate authority.  This is a machine certificate and not a user certificate

http://www.alkia.net/index.php/faqs/106-how-to-secure-remote-desktop-connections-using-tls-ssl-based-authentication
0
 

Author Comment

by:brhunt
ID: 40437715
David,

I saw that but besides dealing with an older version of RDS, it is talking about getting the TLS/SSL connection by issuing a certificate to the RDS server and making sure the clients trust the issuing authority.  A third party certificate is on the RDS server.  What I want to know is is it possible to issue certificates to client PCs/devices and require that to connect to RDS?  So, not only do you have to have the proper credentials, but you have to have a device with the proper certificate.  Similar to what you can setup for an IIS website.

Thanks for the reply.
0
 
LVL 57

Accepted Solution

by:
Pete Long earned 500 total points
ID: 40437848
You can use certs to encrypt the session, but I dont think you can deny access to RDP without a cert? (unless you employ 802.1x)
Windows Server 2012 - Secure RDP Access with Certificates

PL
0
 

Author Comment

by:brhunt
ID: 40437861
That's what I figured.  Thanks everyone for the help.
0

Featured Post

How our DevOps Teams Maximize Uptime

Our Dev teams are like yours. They’re continually cranking out code for new features/bugs fixes, testing, deploying, responding to production monitoring events and more. It’s complex. So, we thought you’d like to see what’s working for us. Read the use case whitepaper.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The following article is comprised of the pearls we have garnered deploying virtualization solutions since Virtual Server 2005 and subsequent 2008 RTM+ Hyper-V in standalone and clustered environments.
The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
This tutorial will walk an individual through the process of installing of Data Protection Manager on a server running Windows Server 2012 R2, including the prerequisites. Microsoft .Net 3.5 is required. To install this feature, go to Server Manager…
How to install and configure Citrix XenApp 6.5 - Part 1. In this video tutorial we have explained step by step installation of Citrix XenApp 6.5 Server on Windows Server 2008 R2 is explained in this video. We have explained the difference between…

710 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question