Unable to delete self-signed certificate from Remote Desktop Services

When I connect to my remote Windows 2012 server using Remote Desktop I am being prompted with "You are connecting to RDP host ...! The certificate was verified through the certificate chain to a self-signed root certificate that was present in the message..." I installed that certificate as part of a test and I now wish to remove it.

To remove it, I followed the instructions at https://technet.microsoft.com/en-us/library/ee890902(v=ws.10).aspx. I delete the certificate using mmc.exe and confirm that it is gone by refreshing and looking in the Remote Desktop certificate folder. It is now empty. Then I restart Remote Desktop Services, which kills my session. So I reconnect and I'm back where I started. Remote Desktop gives me the exact same warning about the certificate and it has reappeared in mmc.exe in the Remote Desktop certificate folder.

How can I permanently delete the certificate?

Server is running Windows Server 2012 Standard

June 29th, 2015 11:28pm

Hi ckrutsinger,

By default, Transport Layer Security (TLS) 1.0 is used to encrypt communications between Remote Desktop Services clients and RD Gateway servers over the Internet. For TLS to function correctly, you must install a Secure Sockets Layer-compatible X.509 certificate on the RD Gateway server.

You can choose the RDP Security Layer Communication if you dont want to use TLS, by this method the server and the client will use native RDP encryption. If you select RDP Security Layer, you cannot use Network Level Authentication.

The related article:

Secure RDS (Remote Desktop Services) Connections with SSL

https://technet.microsoft.com/en-us/magazine/ff458357.aspx

More information:

Turns out restarting the Remote Desktop Configuration service will renew the certificate if it is expired. I

TS Gateway Certificates Part II: How to deploy a certificate on TS Gateway

http://blogs.msdn.com/b/rds/archive/2008/12/18/ts-gateway-certificates-part-ii-how-to-deploy-a-certificate-on-ts-gateway.aspx

Configure a Certificate for the Remote Desktop Gateway Server

https://technet.microsoft.com/en-us/library/cc732329.aspx

Im glad to be of help to you!

Free Windows Admin Tool Kit Click here and download it now
July 2nd, 2015 2:34am

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics