{"id":328,"date":"2014-04-22T00:50:08","date_gmt":"2014-04-21T21:50:08","guid":{"rendered":"http:\/\/as7ablog.com\/kinan\/?p=328"},"modified":"2014-04-22T00:50:08","modified_gmt":"2014-04-21T21:50:08","slug":"rdp-error-after-certificate-template-applied","status":"publish","type":"post","link":"https:\/\/as7ablog.com\/kinan\/?p=328","title":{"rendered":"RDP Error After Certificate Template Applied"},"content":{"rendered":"<p dir=\"ltr\">Issue:<br \/>\nRemote Desktop connections fails to host after configuring RemoteDesktopCertificate template in your internal CA<br \/>\nYou&#8217;ll have an error in the event log of the target machine like this:<\/p>\n<p dir=\"ltr\"><em>The TLS protocol defined fatal error code is 40<\/em>. The Windows SChannel error state is <em>1205<\/em><\/p>\n<p dir=\"ltr\">Most likely this is a Windows 8, 8.1, 2012, or 2012R2<\/p>\n<p dir=\"ltr\">If that is the case, you&#8217;ll have to delete the certificate from the system (the one issued for RDP template) and make sure it will NOT generate new one using the same template.<\/p>\n<p dir=\"ltr\">Then restart the machine (or you may try to restart Remote Desktop services only) and you should be able to login again.<\/p>\n<p dir=\"ltr\">If you&#8217;re looking for the reason behind it, then you&#8217;ll need to read more about the SHA algorithm and the updates pushed into Windows OS in latest versions.<\/p>\n<p dir=\"ltr\">I&#8217;d suggest you check this blog which has a nice topic about this subject: <a href=\"http:\/\/www.dotnetnoob.com\/2013\/10\/hardening-windows-server-20082012-and.html\" target=\"_blank\">http:\/\/www.dotnetnoob.com\/2013\/10\/hardening-windows-server-20082012-and.html<\/a><\/p>\n<p dir=\"ltr\">HTH<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Issue: Remote Desktop connections fails to host after configuring RemoteDesktopCertificate template in your internal CA You&#8217;ll have an error in the event log of the target machine like this: The TLS protocol defined fatal error code is 40. The Windows SChannel error state is 1205 Most likely this is a Windows 8, 8.1, 2012, or [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[4],"tags":[],"class_list":["post-328","post","type-post","status-publish","format-standard","hentry","category-4"],"_links":{"self":[{"href":"https:\/\/as7ablog.com\/kinan\/index.php?rest_route=\/wp\/v2\/posts\/328","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/as7ablog.com\/kinan\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/as7ablog.com\/kinan\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/as7ablog.com\/kinan\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/as7ablog.com\/kinan\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=328"}],"version-history":[{"count":2,"href":"https:\/\/as7ablog.com\/kinan\/index.php?rest_route=\/wp\/v2\/posts\/328\/revisions"}],"predecessor-version":[{"id":331,"href":"https:\/\/as7ablog.com\/kinan\/index.php?rest_route=\/wp\/v2\/posts\/328\/revisions\/331"}],"wp:attachment":[{"href":"https:\/\/as7ablog.com\/kinan\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=328"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/as7ablog.com\/kinan\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=328"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/as7ablog.com\/kinan\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=328"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}