This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(166.4, 27%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJD%3C/text%3E%3C/svg%3E)
Tenable Nessus Scans showing self signed cert used for RDP on port 3389.
Done my due diligence -
through all that - some how RDP broke and I had to revert everything.
In short - this is classified as a medium vulnerability and it would be nice if MS would create a document or actual approved process to resolve this vulnerability.
Most articles I found were in relation to RDS which we don't use - this is just built in RDP to servers / workstations etc.
VULNERABILITIES
MEDIUM
PLUGIN ID57582
Description
The X.509 certificate chain for this service is not signed by a recognized certificate authority. If the remote host is a public host in production, this nullifies the use of SSL as anyone could establish a man-in-the-middle attack against the remote host. Note that this plugin does not check for certificate chains that end in a certificate that is not self-signed, but is signed by an unrecognized certificate authority.
Hello,
How are things going? We have not heard back from you in a few days and wanted to check on the status of this problem. Please let me know the results of your troubleshooting. Your time is greatly appreciated.
Hello,
This issue is not a bug. To use a self-signed certificate, you must establish a dedicated certificate service trust chain or acquire it from an organization that meets the necessary requirements.
---
If the Answer is helpful, please click "Accept Answer" and upvote it.