Help with installing the certificate on the RDP

Help
1

Hello, I’m new to certificates and don’t understand how to make a certificate for RDP for Windows Server 2016, not for IIS and without a domain but with a public IP address, is there any good instruction on this? I also noticed that on the Internet, users use openssl commands, as I understand it, openssl is a program, but I could not find it. I’m trying to create a certificate through the win-acme.v2.1.3.671.x64.pluggable program, but how can I create a certificate using it, can I need another program or another way? Tell someone something, thanks :slight_smile:

I saw many articles but could not understand how to download Certbot for windows?

2

Hi @Gameframe

simple answer: That's not possible.

Letsencrypt doesn't support such certificates.

Let’s Encrypt certificates are standard Domain Validation certificates, so you can use them for any server that uses a domain name, like web servers, mail servers, FTP servers, and many more.

Using a RDP service - let Windows do that and create a self signed certificate. That's enough.

3

Thanks for such a quick reply! Well, and if there is a permanent IP, creating a certificate also fails? That is, you can create a certificate on a localhost, but there is no address on ip, hmm …

4

@Gameframe It doesn’t matter if the IP is “permanent”, Let’s Encrypt simply doesn’t issue certificates for any IP address (yet).

5

Thanks for your reply!

Question for everyone.
What should I do and how can I solve my problem, buy a domain name?

6

For example, I will buy a domain, what will I need to do so that I can connect to the server through the RDP using the let’s encrypt certificate?

Will I need to enter the server into the domain?

7

There are also free options to get a hostname.

8

Ok, which for example? For example, I bought a domain, so then in my case you need to bind the server to the domain (that is, enter into the domain?) To create a certificate or enter into the domain is not necessary?

9

You don’t “Bind” servers to domains. You just set an A or AAAA record, then install the certificate on the server and done

10

Which domain registrars can you recommend for this?

11

I use namecheap for most of mine

12

@ski192man thanks for your reply!

Thanks for the help, do I understand that you need to buy it together? :slight_smile:

13

@Osiris

free options - what are these?

14

Use the Google, Luke.

15

This registry.google?

16

Like this

https://www.google.com/search?q=free+dynamic+dns&oq=free+dynamic+dns

A lot of people use something like no-ip, but you don’t control the whole domain, only a subdomain

17

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.