Certificate Chain Error: A revocation check could not be performed for the certificate RRS feed

  • Question

  • The certificate in question uses the CA Entrust.net Certification Authority (2048) with the chain issuer Entrust Certification Authority - L1C(not installed in intermediate store for clients, since afaik the root takes care of this when needed).

    I have set up this certificate to work with OutlookAnywhere, OWA and ActiveSync. No issues, works like a charm. But when I set up the remote desktop with this cert to SSL / HIGH and select the website cert, I get this error. I don't use RD gateway, I just use direct RDP access through tcp 3389 to administer the server. The problem is I get revocation check could not be performed for the certificate when I try to connect. I have checked the revocation url and it works just fine.

    On the server I have installed the Root certificate to the trusted root on computer store, the chain cert on intermediate on computer store and the actual cert for the server on personal on the computer store. Like I mentioned, it works just fine with any web browser, just not for RDP.  But if i manually install the chain cert into intermediate store on the connecting client it works just fine. But this is not what I want obviously. I paid for this certificate so I don't need to install any certs onto the clients, otherwise I might aswell have used a self signed cert.

    I'm no expert when dealing with certificates, so please ask for more info if needed. I don't know if this is an RDS issue or my CA's fault. Any help would be appreciated.

    Saturday, November 20, 2010 3:43 PM


All replies