RDP client on macOS, iOS connecting to server with expired certificate.

RDP client on macOS, iOS connecting to server with expired certificate.
0

Upvotes

Upvote

 Aug 27 2022
0 Comments 
New

A colleague reported he was unable to connect from RDP client on Windows 10 to our companies self hosted/on-prem server. My macOS and iOS RDP clients connect without issue. Investigating further, I confirmed that our gateway certificate expired on August 15 (will fix that shortly). However, that leads to my next question... Why are the macOS and iOS clients *not* refusing to connect through our server with expired certificate? The fact that these clients raise no warning of an expired certificate makes me wonder if they are either not checking the certs at all or are failing open rather than failing secure. There are no explicit settings available in the Remote Desktop client to affect certificate checking or validation of gateway servers. When connecting for the first time from a client, it does prompt to confirm trust of the self-signed certificate on the specific endpoint RD server, but does not raise a similar prompt regarding the gateway.