asked on
RD Gateway SSL Certificate for Server 2012
We set up a RD Gateway to use RemoteApp on our server. We installed an SSL certificate from Comodo into IIS, so RDWebAccess is reported as being secure.
However, for the actual RD connection, we are using a self-signed cert, so it works but is reported as untrusted.
We are unclear as to how to obtain a real cert for the gateway and broker from a third party.
I haven't been able to find anyone selling certs that would be applicable to the gateway. I also tried setting up a Microsoft CA server, but am getting lost in the process to create a root CA, and then generating a cert for gateway using that...
From what I can tell, we created a root ca, then generated a cert from that for the gateway, and installed. But, upon logging in remotely to the gateway, it appears our self-generated root ca is not trusted (since its not affiliated with a third party ca???
However, for the actual RD connection, we are using a self-signed cert, so it works but is reported as untrusted.
We are unclear as to how to obtain a real cert for the gateway and broker from a third party.
I haven't been able to find anyone selling certs that would be applicable to the gateway. I also tried setting up a Microsoft CA server, but am getting lost in the process to create a root CA, and then generating a cert for gateway using that...
From what I can tell, we created a root ca, then generated a cert from that for the gateway, and installed. But, upon logging in remotely to the gateway, it appears our self-generated root ca is not trusted (since its not affiliated with a third party ca???
Windows Server 2012SSL / HTTPS
Last Comment
bigbangtech
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
brian, I created a csr on server1.sub.domain.net and submitted it to comodo. I received the .crt and imported it into the store. You say your link shows how to add a certificate to RDP... Does it explain how to combine the CER and private key into PFX?
in certificate manager you go to the certificate in question and export the certificate including the private key add a password and it will save it as a .pfx
ASKER
When I go to cert manager and try to export the cert, it gives me the options of DER encoded binary, base64 encoded, or p7b.
PKCS (PFX is grayed out)
PKCS (PFX is grayed out)
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
I was able to export to pfx from the personal store. I will assign points shortly.
I am able to easily load this cert into IIS and bind it to server1.sub.domain.net port 443
However, when I try to configure certificates for RD gateway, broker and web access by selecting existing certificate, it is looking for a certificate ending in .PFX