SSL Certificate Questions

[Guest Simon White]

1) I want to secure a stand alone non-active directory terminal server with

an SSL certificate so that the user name and password in the RDP file will be

used when connecting to the server so that the user can be logged on

automatically by double clicking the RDP file. Will any third party

certificate work in this situation?

 

2) There is a web-site on the same server which I wish to secure using SSL.

Can the same certificate be used to secure the website and the terminal

server or does this require two certificates.

 

I was planning to get an SSL certificate from GoDaddy.com since I use them

for a number of things. Will their certificates work in the above scenario?

Are there any special considerations I should know in order to purchase the

proper certificates?

 

Thanks,

Simon

[Guest kchira [MS]]

Re: SSL Certificate Questions

 

 

"Simon White" <SimonWhite@discussions.microsoft.com> wrote in message

news:E533D1EE-69CA-4F77-83ED-7D8055C9A35A@microsoft.com...

> 1) I want to secure a stand alone non-active directory terminal server

> with

> an SSL certificate so that the user name and password in the RDP file will

> be

> used when connecting to the server so that the user can be logged on

> automatically by double clicking the RDP file. Will any third party

> certificate work in this situation?

 

Yes, it will work if:

1. The Enhanced Key Usage on the Certificate includes Server Authentication.

2. The Key Usage includes Data Encipherment.

3. The name on the certificate matches the Server Name.

4. The issuer of the certificate is trusted on both Server & Client

5. The certificate has a private key.

>

> 2) There is a web-site on the same server which I wish to secure using

> SSL.

> Can the same certificate be used to secure the website and the terminal

> server or does this require two certificates.

>

 

Yes, you can use the same certificate for both.

> I was planning to get an SSL certificate from GoDaddy.com since I use them

> for a number of things. Will their certificates work in the above

> scenario?

> Are there any special considerations I should know in order to purchase

> the

> proper certificates?

>

None except specified above.

> Thanks,

> Simon

>

>

[Guest Simon White]

Re: SSL Certificate Questions

 

I purchased a certificate using http://www.dtop.ca which is the website I wish to

secure now when I connect to terminal services I have to use http://www.dtop.ca as

the Computer Name in the Remote Desktop Client in order make SSL work.

 

Is there a way to request the certificate such that you can use the server

name instead of the website? I cannot find any documentation for requesting

an SSL certificate from a third party provider for terminal services. There

is lots of documentation about using an Enterprise CA etc. but none about

third party. I will need to be able to do this because I have a 2nd terminal

stand alone terminal server that does not have any websites for use.

 

 

 

 

 

"kchira [MS]" wrote:

>

> "Simon White" <SimonWhite@discussions.microsoft.com> wrote in message

> news:E533D1EE-69CA-4F77-83ED-7D8055C9A35A@microsoft.com...

> > 1) I want to secure a stand alone non-active directory terminal server

> > with

> > an SSL certificate so that the user name and password in the RDP file will

> > be

> > used when connecting to the server so that the user can be logged on

> > automatically by double clicking the RDP file. Will any third party

> > certificate work in this situation?

>

> Yes, it will work if:

> 1. The Enhanced Key Usage on the Certificate includes Server Authentication.

> 2. The Key Usage includes Data Encipherment.

> 3. The name on the certificate matches the Server Name.

> 4. The issuer of the certificate is trusted on both Server & Client

> 5. The certificate has a private key.

> >

> > 2) There is a web-site on the same server which I wish to secure using

> > SSL.

> > Can the same certificate be used to secure the website and the terminal

> > server or does this require two certificates.

> >

>

> Yes, you can use the same certificate for both.

>

> > I was planning to get an SSL certificate from GoDaddy.com since I use them

> > for a number of things. Will their certificates work in the above

> > scenario?

> > Are there any special considerations I should know in order to purchase

> > the

> > proper certificates?

> >

> None except specified above.

>

> > Thanks,

> > Simon

> >

> >

>