WVD Client Certificate Error

%3CLINGO-SUB%20id%3D%22lingo-sub-2121751%22%20slang%3D%22en-US%22%3EWVD%20Client%20Certificate%20Error%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2121751%22%20slang%3D%22en-US%22%3E%3CP%3EI'm%20getting%20an%20error%20when%20connecting%20to%20any%20apps%20or%20hosts%20using%20the%20Windows%20client%20(HTML5%20works%20fine)%3C%2FP%3E%3CP%3EThe%20certificate%20is%20not%20from%20a%20trusted%20certifying%20authority%20(attached)%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20can%20add%20the%20cert%20manually%2C%20but%20obviously%20would%20need%20to%20do%20this%20for%20each%20host%20and%20if%20I%20auto-scale%2C%20that%20could%20be%20time%20consuming!%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EIs%20there%20a%20way%20to%20use%20a%20wildcard%20or%20something%20to%20stop%20this%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2122718%22%20slang%3D%22en-US%22%3ERe%3A%20WVD%20Client%20Certificate%20Error%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2122718%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F927977%22%20target%3D%22_blank%22%3E%40AndrewTaylor140%3C%2FA%3E%26nbsp%3BI%20have%20the%20same%20thing%2C%20of%20course%20I%20could%20add%20a%20wildcard%20trusted%20by%20a%20public%20cert%2C%20or%20put%20it%20in%20the%20trusted%20store%2C%20but%20shouldnt%20this%20be%20working%20out%20of%20the%20box%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2127311%22%20slang%3D%22en-US%22%3ERe%3A%20WVD%20Client%20Certificate%20Error%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2127311%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F964209%22%20target%3D%22_blank%22%3E%40ReneMP%3C%2FA%3E%26nbsp%3BI%20haven't%20found%20a%20way%20to%20even%20use%20a%20wildcard%20on%20the%20hosts%20yet%2C%20that%20would%20do%20for%20now%3C%2FP%3E%3C%2FLINGO-BODY%3E
Occasional Contributor

I'm getting an error when connecting to any apps or hosts using the Windows client (HTML5 works fine)

The certificate is not from a trusted certifying authority (attached)

 

I can add the cert manually, but obviously would need to do this for each host and if I auto-scale, that could be time consuming!

 

Is there a way to use a wildcard or something to stop this?

3 Replies

@AndrewTaylor140 I have the same thing, of course I could add a wildcard trusted by a public cert, or put it in the trusted store, but shouldnt this be working out of the box?

@ReneMP I haven't found a way to even use a wildcard on the hosts yet, that would do for now

@AndrewTaylor140 

 

Place a wildcard cert in your personal computer store and use the certificate thumprint of your wildcard.

 

wmic /namespace:\\root\CIMV2\TerminalServices PATH Win32_TSGeneralSetting Set SSLCertificateSHA1Hash="wildcard thumbprint"