Unsolved RDS 3rd party SSL cert
-
I installed a 3rd party cert for my RDS server. It looks like it's using the cert for everything. The only problem is that the remote computer name is the local name, so when the remote app launches, I get prompted twice:
If I run a script to change the published name, I get this error:
Am I going about this wrong? I believe I used the same script on the last RDS server I built.
-
If you solve this post please..
I have had the same issue for years but never bothered to fix it.
-
Here's the powershell script that I used on the last one that I built that seemed to work:
[CmdletBinding()]
Param(
[Parameter(Mandatory=$True,HelpMessage="Specifies the FQDN that clients will use when connecting to the deployment.",Position=1)]
[string]$ClientAccessName,
[Parameter(Mandatory=$False,HelpMessage="Specifies the RD Connection Broker server for the deployment.",Position=2)]
[string]$ConnectionBroker="localhost"
)$Host.UI.RawUI.BackgroundColor = "Black"; Clear-Host
$CurrentUser = New-Object Security.Principal.WindowsPrincipal $([Security.Principal.WindowsIdentity]::GetCurrent())
If (($CurrentUser.IsInRole([Security.Principal.WindowsBuiltinRole]::Administrator)) -eq $false)
{
$ArgumentList = "-noprofile -noexit -file"{0}
" -ClientAccessName $ClientAccessName -ConnectionBroker $ConnectionBroker"
Start-Process powershell.exe -Verb RunAs -ArgumentList ($ArgumentList -f ($MyInvocation.MyCommand.Definition))
Exit
}Function Get-RDMSDeployStringProperty ([string]$PropertyName, [string]$BrokerName)
{
$ret = iwmi -Class "Win32_RDMSDeploymentSettings" -Namespace "root\CIMV2\rdms" -Name "GetStringProperty"-ArgumentList @($PropertyName) -ComputerName $BrokerName
-Authentication PacketPrivacy -ErrorAction Stop
Return $ret.Value
}Try
{
If ((Get-RDMSDeployStringProperty "DatabaseConnectionString" $ConnectionBroker) -eq $null) {$BrokerInHAMode = $False} Else {$BrokerInHAMode = $True}
}
Catch [System.Management.ManagementException]
{
If ($Error[0].Exception.ErrorCode -eq "InvalidNamespace")
{
If ($ConnectionBroker -eq "localhost")
{
Write-Host "n Set-RDPublishedName Failed.
nn The local machine does not appear to be a Connection Broker. Please specify the
n FQDN of the RD Connection Broker using the -ConnectionBroker parameter.n" -ForegroundColor Red } Else { Write-Host "
n Set-RDPublishedName Failed.n
n $ConnectionBroker does not appear to be a Connection Broker. Please make sure you haven specified the correct FQDN for your RD Connection Broker server.
n" -ForegroundColor Red
}
}
Else
{
$Error[0]
}
Exit
}$OldClientAccessName = Get-RDMSDeployStringProperty "DeploymentRedirectorServer" $ConnectionBroker
If ($BrokerInHAMode.Value)
{
Import-Module RemoteDesktop
Set-RDClientAccessName -ConnectionBroker $ConnectionBroker -ClientAccessName $ClientAccessName
}
Else
{
$return = iwmi -Class "Win32_RDMSDeploymentSettings" -Namespace "root\CIMV2\rdms" -Name "SetStringProperty"-ArgumentList @("DeploymentRedirectorServer",$ClientAccessName) -ComputerName $ConnectionBroker
-Authentication PacketPrivacy -ErrorAction Stop
}$CurrentClientAccessName = Get-RDMSDeployStringProperty "DeploymentRedirectorServer" $ConnectionBroker
If ($CurrentClientAccessName -eq $ClientAccessName)
{
Write-Host "n Set-RDPublishedName Succeeded." -ForegroundColor Green Write-Host "
n Old name: $OldClientAccessNamen
n New name: $CurrentClientAccessName"
Write-Host "n If you are currently logged on to RD Web Access, please refresh the page for the change to take effect.
n"
}
Else
{
Write-Host "n Set-RDPublishedName Failed.
n" -ForegroundColor Red
}