Question about Microsoft Windows Server 2008 Terminal Services Full Version for PC

2 Answers

SSL Certificate error:Certificate Mismatch

SSL Certificate error:
I have installed a new SSL cert from Godaddy on a Server 2008 terminal server. The process was completed to import the new cert. When trying to access terminal server web appliactions, round 1 brings up the correct cert (i.e. However, on the next round of authentication, There is a certificate mismatch and it brings up the old self-signed cert ( I have deleted the cert from the store, but after a few minutes, the cert comes back again. any clue on how to make that cert be gone for good?

Posted by on

  • amartel Jul 21, 2009

    Thanks for your reply. Unfortunately, this is IIS7, and your instructions are for IIS6. This is the issue, as I know where to do it in IS6, but not IIS7. They changed everything and you no longer have the right click -> properties option.

    If you go to the root of the site and choose "server certificates". the only cert showing is the purchased cert.

    Likewise, if you look at the site bindings, there is also only the purchased cert showing as bound to port 443.

    Where the self signed cert DOES show up is in the certificate snapin in the mmc. It shows up in the Remote Desktop certificates. I can delete the cert from here, but it comes back in a few minutes, and still shows up with the certificate mismatch when trying to access the ts applications.

    I should mention that this only happens with a windows XP client, as it is bound to the server authentication. Vista is using network auth, and it pulls the purchased cert properly.

  • amartel Jul 21, 2009

    I have solved the issue. I enabled CredSSP on the Windows XP machines and they now login using NLA vs SLA.



2 Answers

  • Level 3:

    An expert who has achieved level 3 by getting 1000 points


    An expert that got 10 achievements.


    An expert that got 5 achievements.


    An expert whose answer got voted for 500 times.

  • Master
  • 2,185 Answers

Go to IIS and right click for the domain where you wish to delete the old certificate associated with it.

Right click website from IIS and click properties. From the Directory Security tab. In The Secure Communications click Server Certificate to open the Webserver Certificate wizard. Click Next and choose "Remove the current certificate". Click next until you follow the end of the wizard.

Posted on Jul 21, 2009

  • Level 3:

    An expert who has achieved level 3 by getting 1000 points


    An expert that got 10 achievements.


    An expert that got 5 achievements.


    An expert whose answer got voted for 500 times.

  • Master
  • 2,360 Answers

Try ssl providing sites

Posted on Dec 10, 2010


1 Suggested Answer

  • 2 Answers

SOURCE: I have freestanding Series 8 dishwasher. Lately during the filling cycle water hammer is occurring. How can this be resolved

a 6ya expert can help you resolve that issue over the phone in a minute or two.
best thing about this new service is that you are never placed on hold and get to talk to real repairmen in the US.
the service is completely free and covers almost anything you can think of (from cars to computers, handyman, and even drones).
click here to download the app (for users in the US for now) and get all the help you need.

Posted on Jan 02, 2017

Add Your Answer

Uploading: 0%


Complete. Click "Add" to insert your video. Add



Related Questions:

1 Answer

I keep getting a error message ssl handshake

The SSL handshake is initiated when your browser issues a secure connection request to a Web server. The server sends a public key to your computer, and your computer checks the certificate against a known list of certificate authorities. After accepting the certificate, your computer generates a key, and then encrypts it using the server's public key. If the SSL handshake fails, your connection to the Web server will not be secure, potentially compromising your business communications. If you cannot make a connection to secure sites when the handshake fails, you know the handshake safeguard is working properly. Test your SSL functionality by intentionally causing the handshake to fail.

Other possilbitiy is the SSL is out of date.

Sep 11, 2014 | Computers & Internet

1 Answer

Server certificate problems

You'd have to update your system with new root certs

Mar 19, 2014 | Samsung SGH-A877 Impression Cell Phone

1 Answer

Galaxy tablet will not connect to google server, says network error

Hello Eva Draper,

Are you connecting to HTTPS:// the google site is chained back to the GeoTrust Root CA and should be included in the version of Android OS that is currently installed on your Tablet.

The SSL Error should provide more information (e.g. Certificate Expired or Not Trusted). Can you provide more information in regards to the error?

Have you made any changes to your DNS settings? If you are using a custom DNS server settings it could be that the settings are redirecting you to a phising site.

Mar 02, 2014 | Samsung Galaxy BBSPHP1 Tablet PC

1 Answer

Company has a windows remote server 2011. I have windows 7 with ie9. I keep getting certificate errors. I have tried to move it.

this is a clear administrator rights issue you need to resolve with their admin folks. certs are operating system dependent and none of us in fixya have any access to your network server

May 21, 2012 | ASUS Computers & Internet

1 Answer

SSL certificate error : SSLPassPhraseDialog builtin is not supported on Win32 . Please Help

Generate Keyopenssl genrsa -des3 -out startssl.key 2048Remove Pass Phraseopenssl rsa -in startssl.key -out server.key
Generate CSRopenssl req -new -key server.key -config "c:\xampp\apache\openssl.cnf" -out server.csr Configure it
give csr at startssl and get certificate and run ... BEST OF LUCK
Useserver.key and certificate u got

Dec 31, 2011 | Computers & Internet

1 Answer

How to install ssl certificate on ACS 32

Installation of a certificate on Cisco ACS Note: ACS only supports PKCS12 certificates. Before installing a certificate, ensure that the certificate is of this type.
To install a signed certificate: Step 1: Choose System Administration > Server Management > Certificate.
The Certificate page appears.
Step 2: Click Install Certificate.
Step 3: On the Install Certificate page, enter values for:
• Server Certificate Format
This is a display-only field, and displays the PKCS12 certificate type.
• Server Certificate File
Enter the path to the local directory in which you saved the certificate file; optionally, click Browse.
• Private Key Password
Enter the private password key, which can be up to 32 characters.
• Confirm Private Key Password
Confirm the private key password.
Step 4: Click Install.
Step 5: To activate the certificate, you must restart all the processes on the ACS View server.
To restart the server from the:
•GUI-Choose System Administration > System Reports > Process Status, and click Restart ACS View Server.
•CLI-Access the CLI in the EXEC mode, and run these commands:
-process stop all
-process start all

Mar 08, 2011 | Avocent Cyclades® ACS32 (ATP0156) Server

1 Answer

While accessing mail i am getting message (error code:ssl_error_rx_record_too_long_

Error code: ssl_error_rx_record_too_long Your SSL website may fail to load and display the error

Error code: ssl_error_rx_record_too_long

This usually means the implementation of SSL on your server is not correct. The error is usually caused by a server side problem which the server administrator will need to investigate.

Below are some things we recommend trying.

- Ensure that port 443 is open and enabled on your server. This is the standard port for https communications.

- If SSL is using a non-standard port then FireFox 3 can sometimes give this error. Ensure SSL is running on port 443.

- If using Apache2 check that you are using port 443 for SSL. This can be done by setting the ports.conf file as follows

— clip —
Listen 80
Listen 443 https
— clip —

- Make sure you do not have more than one SSL certificate sharing the same IP. Please ensure that all SSL certificates utilise their own dedicated IP.

- If using Apache2 check your vhost config. Some users have reported changing <VirtualHost> to _default_ resolved the error.

Mar 18, 2010 | MPC Computers ClientPro 125D PC Desktop

1 Answer

Binding SSL certificates using command line.


As far as I know, there isn't an easy way of doing this. I've always just deployed certificates using the GUI interface of Internet Information Services. However, your question is a good one, and would be a very handy thing as systems that just run in the command line like Server 2008 in certain configurations run with better performance and less surface area. Great thinking! So I started looking around.

All I could find was the following article, which we know how to implement in the interface.

How to implement SSL or TLS secure communications

Pay close attention to paragraph 3, it looks like it hints towards a few different command line options. Then I found the article below.

IIS 6.0 Resource Kit Tools

IIS Cert Deploy VBS is the closest thing I can find to doing something like what you're describing. It looks like a sample file is included in the kit, and you may find some other options available to you as well in those command line executables included in the IIS kit.

That's the only information I can provide you with unfortunately! I wish I could give you more information because you raise a great point in being able to add a certificate within the command line. I searched around Microsoft knowledgebase articles for awhile and couldn't find anything related except for those links there. You can generate a certificate in the command line, I found a few articles on that, and I believe they mention it in the first link I gave you as well. But as far as implementing to a certain site, that seems to be the part where an interface is required unless that VBS script does anything for you.

Best of luck!

Feb 12, 2009 | Microsoft Windows Server Standard 2003 for...

2 Answers

Error message:"Unable to establish a secure connection"

This error can occurs because the VeriSign Certificate Authority (CA) has changed the hashing algorithm that is used for new Secure Sockets Layer (SSL) server certificates from Message Digest 5 (MD-5) to Secure Hash Algorithm 1 (SHA1). A supported fix is now available from Microsoft for Windows CE 2.11 and Pocket Explorer 3.0 this fix can be found at: Note: After you have downloaded and installed the fix, be sure to soft reset the device.

Sep 14, 2005 | NEC MobilePro 780 Pocket PC

Not finding what you are looking for?
Microsoft Windows Server 2008 Terminal Services Full Version for PC  Logo

528 people viewed this question

Ask a Question

Usually answered in minutes!

Top Microsoft Computers & Internet Experts

micky dee

Level 3 Expert

2767 Answers

Piyal Perera
Piyal Perera

Level 3 Expert

528 Answers

Les Dickinson
Les Dickinson

Level 3 Expert

18394 Answers

Are you a Microsoft Computer and Internet Expert? Answer questions, earn points and help others

Answer questions

Manuals & User Guides