Advertisement
Hi All,<\/p>\n
I have a terminal server running on Windows Server 2019 where I needed to renew the RDP certificate. I imported the new certificate into the server under Certificates (Local Computer) → Personal → Certificates<\/strong>. After importing, I could see both the old (expiring) and new certificates. There, I modified the Hi All,<\/p>\n I have a terminal server running on Windows Server 2019 where I needed to renew the RDP certificate. I imported the new certificate into the server under Certificates (Local Computer) → Personal → Certificates<\/strong>. After importing, I could see both the old (expiring) and new certificates. There, I modified the You should make your topic subject a little clearer.<\/p>\n It could be for RDP, RDWeb, IIS, Apache, client devices, Radius - adding the service would be useful.<\/p>\n We have to assume you didn’t put the first certificate on, or if you did, you didn’t make notes.<\/p>\n For terminal server, or remote desktop session hosts, you can replace the certificate inside the RD manager, there is a specific place to import them, that does the work for you. I don’'t remember if off the top of my head.<\/p>\n I’m not sure if there is a specific reason you would be in the registry.<\/p>\n See the last note on this page About half way down via the GUI<\/p>\n
\nTo apply the new certificate, I navigated to the following registry path in registries:<\/p>\nComputer\\HKEY_LOCAL_MACHINE\\SYSTEM\\ControlSet002\\Control\\Terminal Server\\WinStations\n<\/code><\/pre>\n
Advertisement
SSLCertificateSHA1Hash<\/code> registry entry by replacing the existing thumbprint with the new certificate’s thumbprint (copied via right-click → Modify). After rebooting the VM, I was no longer able to connect via RDP.I have since restored the VM from a backup. Could you please advise if I am following the correct procedure, or if I am missing any steps?<\/p>","upvoteCount":0,"answerCount":2,"datePublished":"2025-05-17T10:15:24.280Z","author":{"@type":"Person","name":"rogerroger3","url":"https://community.spiceworks.com/u/rogerroger3"},"suggestedAnswer":[{"@type":"Answer","text":"
\nTo apply the new certificate, I navigated to the following registry path in registries:<\/p>\nComputer\\HKEY_LOCAL_MACHINE\\SYSTEM\\ControlSet002\\Control\\Terminal Server\\WinStations\n<\/code><\/pre>\nSSLCertificateSHA1Hash<\/code> registry entry by replacing the existing thumbprint with the new certificate’s thumbprint (copied via right-click → Modify). After rebooting the VM, I was no longer able to connect via RDP.I have since restored the VM from a backup. Could you please advise if I am following the correct procedure, or if I am missing any steps?<\/p>","upvoteCount":0,"datePublished":"2025-05-17T10:15:24.418Z","url":"https://community.spiceworks.com/t/install-certificate/1206690/1","author":{"@type":"Person","name":"rogerroger3","url":"https://community.spiceworks.com/u/rogerroger3"}},{"@type":"Answer","text":"
\nRD Gateway, certificate expiration and how to manage renew - Windows - Spiceworks Community<\/a><\/p>\n