StanTastic

Asked: 2018-11-30 00:31:29 +0800 CST2018-11-30 00:31:29 +0800 CST 2018-11-30 00:31:29 +0800 CST

How to distribute RDP certificates from ADCS to non-domain members?

I have a few hundred systems that are not AD-joined, for which I'd like to issue RDP certificates from an internal hierarchy (built with ADCS). I can do it manually, by generating CSRs, then signing with ADCS CA, then installing certs - easy, but multiply by a hundred, every 2 years or so, and it doesn't look attractive anymore.

How should I automate it?

1 Answers

Voted

Justin Cervero
2018-11-30T11:18:22+08:002018-11-30T11:18:22+08:00
Use the Certificate Enrollment Web Services. What you are describing sounds similar to this but instead of having the users request the certificate as described in the 'Testing the configuration' section you would instead request the certificates via PowerShell or some other scripted process.
1

How to distribute RDP certificates from ADCS to non-domain members?

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?