Install custom rdp certificate
1. Open cmd as Administrator Install pfx certificate to LocalMachine Personal
certutil.exe -importPFX "C:\Users\Administrator\Desktop\gerst.pfx" noExport
2. Open mmc and add Snapin certificate local computer
3. On certificate -> right click Properties -> All Tasks -> Manage Private Keys
4. Add NetworkService with ReadOnly
5. Open powershell as Administrator and add rdp ssl thumbprint
$tp = (ls Cert:\LocalMachine\my | WHERE {$_.Subject -match "gerst-it" } | Select -First 1).Thumbprint
Write-Output "Thumbprint: $tp"
& wmic /namespace:\\root\CIMV2\TerminalServices PATH Win32_TSGeneralSetting Set SSLCertificateSHA1Hash="$tp"
Posted: Oktober 1st, 2019 under Windows, Windows Server.