RDS ucc certificate show wrong SAN name.

Question

I have UCC certificate for all services and work correctly except for vdi (RDS Windows 2019).
When connect to the url wotk correctly but when open the RDP show a warning about the name of the certificate.
the url is vdi.groupa.bz
and if you test the certificate is valid and is installed correctly.
https://www.whynopadlock.com/results/6e89ad87-940e-40d7-ba03-6239e57e0250

And when connect to the RDP show the name "cloud.groupa.bz" that is the first in the list of alternate names or protected domains.
The RDP connected after accept but I need that

I wait your comments and help to fix this.

Best regards,
Roque.

Answer 1

The problem isn't about the name, the error states that it couldn't check for revocation information. Maybe your CA had a problem with the CDP or the CRL expired.
Other option is some appliance doing SSL inspection, which could remove some information from the certificate, including the CDP information needed to do the revocation check.

Answer 2

Sorry but the error is the following:

This is the error that show when connect from inside and outside.

Answer 3

This is other example that happen with other VDI service.

Answer 4

The certificate have the alternate name broker.groupd.bz in the list.

When open the url vdi.groupd.bz always appear fine in web browser but each time that open the RDP show the warning about the revocation or the error about the name.

The name is correct because thje certificate is an UCC and have all names.
And if I test the url for the revocartion list, from the client connect correctly and it download the file ""http://crl.godaddy.com/gdig2s1-4373.crl
.