When we try to RDP to a server or our PCs we always experience the below error.
And when we click on the View certificate we see a self signed certificate.
This is not a secure connection.
How can we secure this RDP session using a public SSL certificate?
First we need to get a SSL certificate from one of the providers. Click here to purchase a SSL certificate.
Also you can get a 30 day trial fully functional SSL certificate as well. Click here to get a 30 days trial SSL certificate.
How to purchase a SSL certificate
Once you get your SSL certificate install it on your server or PC where you RDP into.
You need the SSL certificate in PFX format.
Select local machine
Provide the password which you gave when creating the PFX file.
Select the personal store and click next.
Once successfully install you will see the below message.
Then open up a MMC.exe > File > Add or Remote Snap-ins
Select Certificates and add> Computer account > local computer
Then expand the Certificates > Personal > Certificates and look for the certificate you installed.
Open the certificate go to details tab and scroll down for the thumbprint.
We need to copy the thumbprint.
Lets open a CMD as admin and run the below command. Replace your thumbprint.
wmic /namespace:\\root\cimv2\TerminalServices PATH Win32_TSGeneralSetting Set SSLCertificateSHA1Hash=”c5e66949ac3d97dd8e136fdb449dc62e4d1f235e”
Now that we have installed the SSL certificate and bind it to the RDP service.
Now lets see the connection and the certificate.
Open mstsc from your run windows where you will be RDPing from and enter your destination PCs IP or the domain name.
Now clearly you can see that the install SSL certificate will be shown .
After installing the SSL certificate
Before installing the SSL certificate.
By this way you can protect and encrypt you RDP session end to end using the SSL certificate.