Deploy a Custom Certificate on the Terminal Services Agent

Beginning in 8.0.1, you can complete the following procedure to obtain and deploy custom certificates for mutual authentication between the Terminal Services Agent and a firewall.
  1. Generate or obtain your server and client certificates.
    Based in the needs of your organization, choose one of the supported methods for generating or obtaining your custom certificates.
    The server certificate, installed on the Terminal Services Agent, requires an encrypted private key.
  2. Upload the server certificate to the Terminal Services Agent.
    Under Server Certificate on the Terminal Services agent, upload the server certificate and enter the private key password.
  3. Configure the client certificate profile on the firewall.
  4. Apply the certificate profile.
    On the firewall, select DeviceUser IdentificationConnection Security and choose the certificate profile.

Related Documentation