question

ImranShabir-4600 avatar image
0 Votes"
ImranShabir-4600 asked ·

Remote Desktop Gateway not connecting

Hi,

Hope your keeping well and safe,

I have setup a RDG server with features Manager and Licensing on the same box, it was was working but now its stopped however we received a license issue on when using the gateway for multiple connections to a single server. Any help would be useful please.

Spec:
Server 2016 STD
vCPU: 6
Memory: 6GB

71173-rdp-config.png
71183-rdp-cert-error.png
71145-rdp-cert-error-2.png
71191-cert-descrip.png
71192-trusted-root-cert.png


windows-remote-desktop-serviceswindows-server-securitywindows-remote-desktop-client
rdp-config.png (29.9 KiB)
rdp-cert-error.png (65.6 KiB)
cert-descrip.png (41.0 KiB)
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

KarlieWeng-MSFT avatar image
0 Votes"
KarlieWeng-MSFT answered ·

Hello @ImranShabir-4600


To trust the self-signed Root CA on the client, you will need to export the CA certificate from the server, then import the certificate as a Trusted Root Certification Authority on the client computer.

From http://support.microsoft.com/kb/555252:

Requesting the Root Certification Authority Certificate by using command line:
a. Log into the Root Certification Authority server with Administrator Account.
b. Go to "Start" -> "Run" -> and write "Cmd" and press on "Enter" button.
c. To export the Root Certification Authority server to a new file name "ca_name.cer"
write: "certutil -ca.cert ca_name.cer".

Next, you will copy the certificate to the client machine.

  1. Double-click on the certificate on the client machine.

  2. Choose "Install Certificate..." on the General tab, then click Next.

  3. Choose "Place all certificates in the following store", then choose "Browse..."

  4. Select "Trusted Root Certification Authorities", and click OK.

  5. Click Next, then click Finish.

  6. You should be able to connect to the RD Gateway on that client machine now. You will need to do this on each client machine that you want to connect from.


Best Regards
Karlie


If the Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


·
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

ImranShabir avatar image
0 Votes"
ImranShabir answered ·

Hi @KarlieWeng-MSFT

I installed it using Local Machine and Local user for Trusted Root Certification Authority and i still got the unknown publisher.

Kind Regards
Imran

· 1 ·
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi,

Have you checked if below answers help?

If they are helpful, please do not forget to accept the answers.

Thanks

0 Votes 0 ·
CludioRodrigues-2769 avatar image
0 Votes"
CludioRodrigues-2769 answered ·

Why not use a real certificate? Let's Encrypt is free. Can be issued/renewed using PowerShell (Posh-ACME module). Way better approach.
That said your certificate is one thing, the Root CA is another. The Root goes to the Trusted Root folder, the actual cert to the certificates. Machine level, not user.

CR

·
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

ImranShabir avatar image
0 Votes"
ImranShabir answered ·

Hi @CludioRodrigues-2769

Thank you for the response,

Apologies i forgot about this ticket, i got arround this by using a Self-signed Cert and it worked. even tho RDG Certificates say untrusted its working. I got consultancy help and it was a wild card/internal CA cert issue.

Thanks

·
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.