Re: SSL issue
- From: "Josh Rosenberg [MSFT]" <joshrose@xxxxxxxxxxxxxxxxxxxx>
- Date: Tue, 10 Apr 2007 18:36:09 -0700
On the client side there is a setting you can change to require cert validation. If you look under the advanced tab (in RDP 6.0, it might be different for 5.1 and 5.2), you can choose what level of authentication to require. One of the options is to require authentication, if that is set, it will pop an error if the authentication is not met.
--
Josh Rosenberg [MSFT]
SDE - Terminal Services
"Wayne" <wayne@xxxxxxxxxx> wrote in message news:puTSh.13996$JZ3.12273@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
I have configured a Win2003 w/sp2 server to be a terminal server. I have configured TLS for the connection, and this works fine. I am using a certificate issued by an internal CA (i.e. did not purchase a cert from VeriSign or someone like it).
When I connect to this Terminal Server from a domain client, which has a certificate pushed to it via group policy, the connection works as advertised.
When connecting with a client that is not joined to the domain, and thus does not have our internal CA listed as a trusted source, I get an error message before I connect warning me that the certificate is not trusted. I click OK to continue and I am able to establish a session.
I don't want this. If there is a problem with a certificate I want the connection to drop, no session established.
I read an article on the MS website, it implied that if the certificate is not trusted, the connection will drop and no remote desktop session will be established, however that was not what I saw in practice. (I'm sorry, I lost the URL to the article)
Did I misconfigure the terminal server somehow? Did I misinterpret something?
.
- References:
- SSL issue
- From: Wayne
- SSL issue
- Prev by Date: Re: Remote Desktop to XP Pro Problems
- Next by Date: Re: Remote Desktop to XP Pro Problems
- Previous by thread: SSL issue
- Next by thread: Re: Remote Desktop to XP Pro Problems
- Index(es):
Relevant Pages
|
