Wednesday, November 28, 2012 9:59 PM
I'm configuring our servers to use SSL for their RDP connections. On all of our servers that are domain members I have been able to generate a certificate using the Certificate MMC and selecting Request a Certificate task. I then used that certificate to allow the RDP connection to use SSL.
The problem I have is with one server that is not a domain member. When using the Certificate MMC the Request a Certificate task is not an option. I have tried other ways of generating a new certificate to the sever and applying it, such as going the the CA web site (http:\\CAName\certsrv) and creating a Web Server , Administrator or User cert, but when I go to the RDP properties and select edit for the certificate there is not a cert list there for me to choose. I can see these certs installed on the server in the Computer\Certificates\Personal folder on the server.
Any idea's how I can generate the right type of certificate so that RDP connection properties will recognize it and let me use it for the SSL connection?
Thursday, November 29, 2012 12:30 AMModerator
You can use the wizard in IIS Manager to create a certificate request and then install the response from the CA. I normally do this with a trusted public authority such as GoDaddy, GeoTrust, etc., but you should be able to use it with an internal CA, perhaps via the web interface. Purchased single-name certificates are available for less than $10/year if you would like to do that instead.
Another thing you could do is obtain the certificate you need for this server using a different server, then export it (and its private key) as a .pfx file and then import it into the Local Computer\Personal store of the server you need it installed on.
Thursday, November 29, 2012 6:15 PMThanks, I was able to resolve the issue by using a wildcard cert we had. I had tried using a cert generated on another server (and it's private key) but for some reason the RDP properties would not list it either.
- Marked As Answer by rich1233 Thursday, November 29, 2012 6:19 PM