Solved

Require Client Certificates for RDS 2012

Posted on 2014-11-12
4
278 Views
Last Modified: 2014-11-12
Is it possible to require RDP clients connecting to RDS 2012 to have a client certificate?  I know the server has one.  But, I would like to add a bit more security than just username/password.  I also know that VPN is possible, but was looking for something a bit less cumbersome.
0
Comment
Question by:brhunt
  • 2
4 Comments
 
LVL 78

Expert Comment

by:David Johnson, CD, MVP
ID: 40437671
The client machine must have a valid certificate requires you setup a certificate authority.  This is a machine certificate and not a user certificate

http://www.alkia.net/index.php/faqs/106-how-to-secure-remote-desktop-connections-using-tls-ssl-based-authentication
0
 

Author Comment

by:brhunt
ID: 40437715
David,

I saw that but besides dealing with an older version of RDS, it is talking about getting the TLS/SSL connection by issuing a certificate to the RDS server and making sure the clients trust the issuing authority.  A third party certificate is on the RDS server.  What I want to know is is it possible to issue certificates to client PCs/devices and require that to connect to RDS?  So, not only do you have to have the proper credentials, but you have to have a device with the proper certificate.  Similar to what you can setup for an IIS website.

Thanks for the reply.
0
 
LVL 57

Accepted Solution

by:
Pete Long earned 500 total points
ID: 40437848
You can use certs to encrypt the session, but I dont think you can deny access to RDP without a cert? (unless you employ 802.1x)
Windows Server 2012 - Secure RDP Access with Certificates

PL
0
 

Author Comment

by:brhunt
ID: 40437861
That's what I figured.  Thanks everyone for the help.
0

Featured Post

Enabling OSINT in Activity Based Intelligence

Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

Join & Write a Comment

Recently, I was assigned the task of performing a hardware refresh in the datacenter. The previous Windows 2008 systems were connected to the SAN via fiber channel HBA’s and among other thing, had PowerPath installed in order to provide sufficient f…
What to do when Windows Update is not working correctly? What tools can I use to detect the cause of the malfunction problem? What does this numeric error code mean? These and other questions that you have been asking in the past are answered here (…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
How to install and configure Citrix XenApp 6.5 - Part 1. In this video tutorial we have explained step by step installation of Citrix XenApp 6.5 Server on Windows Server 2008 R2 is explained in this video. We have explained the difference between…

706 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now