RE: Server Certificates
- From: David Sheetz <DavidSheetz@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Sat, 29 Dec 2007 14:18:01 -0800
Forgive my newbie ignorance but could you be more specific I am not sure how
to do what you just said and I believe you are on the right trail. I just
need a simple administrative RDP back and forth between any of the 3 main
servers it woked fine until I promoted the one server to a domain controller.
"Ryan Hanisco" wrote:
Aah, that is a bit different. You shouldn't need a CA or a well defined.
certificate infrastructure just to RDP. Generally you don't have to worry
about Certs with RDP unless you are building custom .rdp files for the
connection.
You might also try checking the certs that are on the servers to ensure that
they appropriate certificate chains are there -- specifically if they are in
the same domain.
--
Ryan Hanisco
MCSE, MCTS: SQL 2005, Project+
http://www.techsterity.com
Chicago, IL
Remember: Marking helpful answers helps everyone find the info they need
quickly.
"David Sheetz" wrote:
Thanks for the response,
the real reason for posting this question was that when I try to RDP into
that server I get an error that there is no certificate for the machine I am
trying to connect to. If what you are saying is true ( which I do believe is
correct) what am I missing?
"Ryan Hanisco" wrote:
Hi David,
With AD integrated enterprise CAs you will automatically force certificates.
The issue comes with the SQL servers if you are planning to do database
encryption.
Other than that, you should be ok with machine encryption. If you are
looking for user account certs, then you will need to map certs to the
individual accounts.
--
Ryan Hanisco
MCSE, MCTS: SQL 2005, Project+
http://www.techsterity.com
Chicago, IL
Remember: Marking helpful answers helps everyone find the info they need
quickly.
"David Sheets" wrote:
Can anyone give me a short step by step on how to create certificates for my
domain controllers? I have 3 DC's on a totally isolated network and want to
run the PDC with certificate authority services (I known this is not
recommended but I do not have a spare pc to make the certifiicate server) and
have certificates on the 2 other DC's. I will also be running sharepoint and
exchange server 2007 as well as SQL (SQL on the PDC and Sharepoint on 1 DC
and Exchnage on the other DC). I only have the 3 servers to work woth and
MUST run all these services and need redundancy.
- References:
- RE: Server Certificates
- From: David Sheetz
- RE: Server Certificates
- From: Ryan Hanisco
- RE: Server Certificates
- Prev by Date: RE: Clients logging into the wrong DC at remote site
- Next by Date: Active Directory Group Strategy
- Previous by thread: RE: Server Certificates
- Next by thread: Active Directory Group Strategy
- Index(es):
