The Tricky Bit
If you are using Remote Desktop Gateway use instructions here: Select an Existing Certificate for Remote Desktop Gateway | Microsoft Learn
If you want this for a standalone server (my case) then use instructions here: Remote Desktop listener certificate configurations - Windows Server | Microsoft Learn
I used the command below:
wmic /namespace:\root\cimv2\TerminalServices PATH Win32_TSGeneralSetting Set SSLCertificateSHA1Hash="FINGERPRINT"
Acquiring the fingerprint:
I used notepad to clean up the fingerprint (not spaces)
Telling Remote Desktop To Use the Cert:
No restart needed.
Confirm cert is being used
This can be hard as it works with domain name, So i login using IP to verify the cert
