The only caveat I'd note is that some RDP clients will totally, unrecoverably freak out if they can't contact the CRL. So consider that if you're got the default AD-integrated CRL publication with any non-domain / non-trust clients and get an highly-available HTTP CDP at the top of the list.
--Steve On Thu, Jul 12, 2012 at 8:36 PM, Michael B. Smith <[email protected]>wrote: > Just use the web server certificate.**** > > ** ** > > *From:* Ziots, Edward [mailto:[email protected]] > *Sent:* Thursday, July 12, 2012 2:57 PM > *To:* NT System Admin Issues > *Subject:* Encryption of RDP via Certificates**** > > ** ** > > If anyone has successfully done this and knows which Certificate Template > in Microsoft CA to utilize for this, I would be greatful if you hit me off > line. I am going nuts trying to use the Certificates Snapin to get a > certificate created via a template on my server made for Server > authentication, and its just not letting me do it. **** > > ** ** > > Z**** > > ** ** > > Edward Ziots**** > > CISSP, Security +, Network +**** > > Security Engineer**** > > Lifespan Organization**** > > [email protected]**** > > ** > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
