Saturday, June 30, 2012 11:29 PM
I have 2 Windows 7 x64 machines. I have an authentic SSL certificate from a trusted CA that is installed on the one Windows 7 computer. I want this certificate to be supplied for my remote desktop session from the other Windows 7 PC. How can I configure this? Currently it just supplies the "<COMPUTERNAME>" certificate, however I want to use my actual authentic certificate.
Where do I specify what certificate to use in Windows 7 for remote desktop sessions?
Sunday, July 01, 2012 4:26 AMModerator
Below is the procedure, including importing the certificate from a pfx file. If the certificate you want to use is already in the Local Computer Personal store, then you can skip the import step. Based on what you have written you have already imported the certificate, but I will include the import instructions for completeness. You must have the certificate as well as its private key imported.
1. On the Remote machine, right-click on the Command Prompt and choose Run as Administrator
2. Enter the following into the administrator command prompt window:
certutil -p <password> -importpfx c:\yourcertificate.pfx
3. Enter the following into the administrator command prompt window:
wmic /namespace:\\root\CIMV2\TerminalServices PATH Win32_TSGeneralSetting Set SSLCertificateSHA1Hash="e2f034c171b92afc96b23b7f4da15728c1e461a9"
The above is one continuous command except for spaces between arguments. Substitute your certificate's thumbprint for the Hash listed above. The quickest way to get your cert's thumbprint is to open the certificate, on the Details tab highlight the thumbprint with your mouse, press Ctrl-C to copy it, then paste it into the command prompt using the system menu Edit--Paste command. Aftering pasting simply delete out the spaces in the thumbprint using backspace and the left arrow key.
Monday, July 02, 2012 5:31 PMThis worked exactly how I wanted, thank you!