Skip to main content
Version: Axidian Privilege 3.3

RDP File Signature Configuring

Configuring RDP file signing is performed on the management server with the Core component installed.

To enable signing, a PFX certificate issued by a certificate authority is required.

Configuring a certificate with thumbprint

  1. Run PowerShell as administrator.

  2. Open the Certificates snap-in using the command:

    certlm.msc

  3. Add the certificate to the computer's personal data storage.

  4. Right-click on the certificate and select All TasksManage Private Keys.

  5. Click Add.

  6. In the window that opens, click Locations, select the local computer, and click OK.

  7. In the text field, enter the name IIS_IUSRS, click OK, and then Apply.

  8. Double-click on the certificate and go to the Details tab.

  9. In the list, find the Thumbprint field and click on it.

  10. Copy the certificate thumbprint value without spaces.

Editing the configuration file

  1. Open the appsettings.json configuration file of the Core component in an editor, which is located at the path:

    C:\inetpub\wwwroot\core\appsettings.json
     {
        "Rdp": {
            "UseRemoteApp": false,
            "SignRdpFile": true,
            "Certificate": "16c214ba7dec702a7ce5e4ac727502b0c0d448e2",
            "Password": ""
        }
    }

  2. Edit the RDP section::

    • For the SignRdpFile , set the value to true (enable RDP file signing).
    • For the Certificate specify the certificate thumbprint.

  3. Save the changes.

Restarting the Core component

After editing the configuration file, you need to restart the Axidian Privilege Core component.

  1. Run PowerShell as administrator.

  2. Restart the Core application pool:

    C:\Windows\System32\inetsrv\appcmd.exe recycle apppool Axidian.Privilege.Core