SSL Session Host Load Balancing

0

Hi all,

I'm currently configuring the free LoadMaster for RD Session Host. But I'm using RDP over SSL and when I try to connect to my VIP, ofcourse I need a certificate with a name corresponding to the server hosting the session. When i add my RD Session Host virtual services in LoadMaster, I can not install certificate. I already had the issue with Zen LoadBalancer. Do you know how to workaround or find a solution ?

Thanks in advance,

 

Best regards

4 comments

Avatar
0
Darren Morrissey

Hello,

 

When you say "When i add my RD Session Host virtual services in LoadMaster, I can not install certificate."  Are you saying you cannot install certificate on your Session Host server using Server Manager > Remote Desktop Services?  I find this a bit strange, adding your SH servers to LM should not interfere with Administration tasks on your RDS Servers? 

Avatar
0
tlambolez

Hello,

 

I can install certificates on my RDS machines, there are no problem for that. But, when I try to connect to the VIP, the connection is blocked because the certificate is delivered for a specific name machine and it does not match the VIP:

Name mismatch:

Request remote computer: VIP
name in certificate: hostname session host machine.

So it's blocked.

I need to install certificate on the LB.

Avatar
0
Darren Morrissey

Unless you're Load Balancing an RD GW over port 443, then it's not possible to do SSL Offloading on TCP 3389. 

Is it possible to add a certificate which has the correct CN or SAN to your Session Host Servers using Server Manger or  "MMC Snapin" > Certificates > Remote Desktop > Certificates? 

Avatar
0
tlambolez

In fact, I need a certificate issued to my VIP or LB but I don't know how to generate it with Ad CA services for exemple.

And I don't really need SSL offloading but just Load Balancing SSL over RDP flux.

Thanks