LetsEncrypt with terminal server/RDWeb


#1

Ok, stupid question time maybe. I have my terminal server which also runs RDWeb, i got the SSL cert for my remote.[domain here].com…i read the instructions but have no clue how to get the certificate or where to even look.

I do have some Ubuntu servers around and i did fiddle with the documentation about install…but since its a Windows Server doing the web hosting i am not sure what to do…

Any assistance would be awesome!


#2

Open the certificate store for the computer account (mmc-> certificate-> local computer) and you’ll be able to find the certificate for the RDWeb.
Export the certificate as a P12 and import it Inside.
Then just change the mapping (if this is the Gateway, you have to modify it in IIS)


#3

So i used my ubuntu client to try and full the cert, i then receive:
"Failed authorization procedure. [domain name here] (dvsni): unauthorized :: The client lacks sufficient authorization :: Correct zName not found for TLS SNI challenge

IMPORTANT NOTES:

  • The following ‘unauthorized’ errors were reported by the server:

    Domains: [domain name here]
    Error: The client lacks sufficient authorization

    To fix these errors, please make sure that your domain name was
    entered correctly and the DNS A record(s) for that domain
    contain(s) the right IP address.
    "

I already checked my DNS A record, i use No-IP + godaddy and have had everything fully functional for over 2 years now.


#4

Hi @dxm765, depending on the authenticator that you use in the client, the DNS A record needs to be pointing at the computer where the Let’s Encrypt client is running, not at the computer that will eventually use the certificate. (In this case the A record would probably need to be pointed at the Ubuntu machine, temporarily.)

(This is not true for manual mode, for example; in manual mode you can run the client on a different computer from the computer that the A record is pointed at.)