SSL Certificate
Hi Everyone. Can an SSL certificate be assigned to port 4443 instead of port 443 for RDP?
Can port 443 be shared between two different domain certificates for RDP remote.domain.com.au & remote.domain2.com.au?
Is there a way of securing RDP if none of these options are feasible?
Thank you in advance.
Can port 443 be shared between two different domain certificates for RDP remote.domain.com.au & remote.domain2.com.au?
Is there a way of securing RDP if none of these options are feasible?
Thank you in advance.
ASKER
how can I get port 4443 working with the certificate in Server 2012 for RDP, any links? it seems to fail when I try it
1) an an SSL certificate be assigned to port 4443 instead of port 443 for RDP?
Yes, as MAS stated.
2) Can port 443 be shared between two different domain certificates for RDP remote.domain.com.au & remote.domain2.com.au?
Yes, expanding on what MAS stated, your cert must not be a wildcard cert + must have been generated to cover the above 2x hostnames specifically, as they're 4 level host names.
Refer to https://LetsEncrypt.org docs for how to do this. Likely something like...
Note: Trying to cover 2x+ domains like this will likely cause complexities, as the auto renewal sequence (if you use LetsEncrypt) requires access to the /some-dir for all domains covered by cert. Unlikely this will work, as both separate sites will have their own directory.
If you use some other cert provider, some allow what you're asking, some don't.
Better to generate 2x different LetsEncrypt certs, one for each host, where /some-dir is the DocumentRoot for each host.
Tip: Keep things simple.
Yes, as MAS stated.
2) Can port 443 be shared between two different domain certificates for RDP remote.domain.com.au & remote.domain2.com.au?
Yes, expanding on what MAS stated, your cert must not be a wildcard cert + must have been generated to cover the above 2x hostnames specifically, as they're 4 level host names.
Refer to https://LetsEncrypt.org docs for how to do this. Likely something like...
certbot-auto --force-renewal --no-self-upgrade --non-interactive --rsa-key-size 4096 --email $email --agree-tos --webroot -w /some-dir -d remote.domain.com.au -d remote.domain2.com.auNote: Trying to cover 2x+ domains like this will likely cause complexities, as the auto renewal sequence (if you use LetsEncrypt) requires access to the /some-dir for all domains covered by cert. Unlikely this will work, as both separate sites will have their own directory.
If you use some other cert provider, some allow what you're asking, some don't.
Better to generate 2x different LetsEncrypt certs, one for each host, where /some-dir is the DocumentRoot for each host.
Tip: Keep things simple.
ASKER
The problem is we have a certificate for
RDP remote.domain.com. Another IT firm works here who requested back the port 443 for their own project. So we have an SSL certificate when we used port 443, will this need changing to a new one with GoDaddy? Sorry for all the questions.
RDP remote.domain.com. Another IT firm works here who requested back the port 443 for their own project. So we have an SSL certificate when we used port 443, will this need changing to a new one with GoDaddy? Sorry for all the questions.
Your starting point will be to generate your certs, however you do this.
I prefer LetsEncrypt, because you generate the cert once + setup a CRON job + your cert auto renews forever, hands free.
With GoDaddy, you'll have to generate 2x separate certs or as I recall, they allow UCC certs (multi host/domain certs).
You must first generate a cert or certs to cover your 2x hosts/domains first, before any other step.
Or maybe you're saying you've been provided the cert by your IT firm + you're trying to add this cert to your Apache config.
First, be clear about your starting point. You must have your certs or generate your certs.
Second, you must add your certs to your Apache (or whatever Webserver you run) config.
I prefer LetsEncrypt, because you generate the cert once + setup a CRON job + your cert auto renews forever, hands free.
With GoDaddy, you'll have to generate 2x separate certs or as I recall, they allow UCC certs (multi host/domain certs).
You must first generate a cert or certs to cover your 2x hosts/domains first, before any other step.
Or maybe you're saying you've been provided the cert by your IT firm + you're trying to add this cert to your Apache config.
First, be clear about your starting point. You must have your certs or generate your certs.
Second, you must add your certs to your Apache (or whatever Webserver you run) config.
This question needs an answer!
Become an EE member today
7 DAY FREE TRIALMembers can start a 7-Day Free trial then enjoy unlimited access to the platform.
View membership options
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Yes
-->Can port 443 be shared between two different domain certificates for RDP remote.domain.com.au & remote.domain2.com.au?
If your certificate has the above names for sure you can use that.