Hi all,
I just want to secure rdp access on some servers. Actually rdp is configured to use a self-signed certificate, but it's not the way our Retina reports like.
There's a lot of guides to do so, but when I tried to request a certificate, it failed 'cause it seems there's no certificate template that I can choose.
Actually in my domain there's one standalone root CA server. I suppose I need to setup ad Enterprise one, is it right?
Should I leave the standalone server and setup an Enterprise CA which is dipendant from the standalone root? I just read on best pratices that an enterprise root is not the best choice.
Just one another question: if I decide to build an enterprise CA, should it be a domain controller or it could be a normal server with AD snap-in?