Moni Habr, iyi ndi kalozera wachidule komanso wosavuta kwa oyamba kumene momwe mungalumikizire kudzera pa RDP pogwiritsa ntchito dzina lachidziwitso osalandira chenjezo lokhumudwitsa la satifiketi yosainidwa ndi seva yomwe. Tidzafunika WinAcme ndi domain.
Aliyense amene adagwiritsapo ntchito RDP adawonapo izi.
Bukuli lili ndi malamulo opangidwa okonzeka kuti zikhale zosavuta. Ndinakopera, ndinalemba ndipo zinagwira ntchito.
Chifukwa chake, zenerali likhoza kudumpha ngati mupereka satifiketi yosainidwa ndi gulu lachitatu, wodalirika wotsimikizira ziphaso. Pankhaniyi, Tiyeni Tilembetse.
1. Onjezani mbiri A
Timangowonjezera mbiri A ndikulowetsamo adilesi ya IP ya seva. Izi zimamaliza ntchito ndi domain.
2. Koperani WinAcme
3. Tsegulani doko 80
Seva yanu imatsimikiziridwa kudzera pa http, kotero tiyenera kutsegula port 80. Kuti muchite izi, lowetsani lamulo mu Powershell:
New-NetFirewallRule -DisplayName 80-TCP-IN -Direction Inbound -Protocol TCP -Enabled True -LocalPort 80
4. Lolani script kuchitidwa
Kuti WinAcme athe kuitanitsa satifiketi yatsopano popanda mavuto, muyenera kuyatsa zolemba. Kuti muchite izi, pitani ku / Scripts/foda
Tisanayambe WinAcme, tiyenera kulola malemba awiri kuti ayende. Kuti muchite izi, dinani kawiri kuti mutsegule PSRDSCerts.bat kuchokera mufoda yokhala ndi zolembedwa.
5. Ikani satifiketi
Kenako, lembani mzere womwe uli pansipa ndikulowetsa dzina la domain lomwe mukufuna kulumikizana ndi seva ndikuyendetsa lamulo.
C:Winacmewacs.exe --target manual --host VASHDOMAIN.RU --certificatestore My --installation script --installationsiteid 1 --script "ScriptsImportRDListener.ps1" --scriptparameters "{CertThumbprint}"
Pambuyo pake, satifiketi yosainira domain idzalowa m'malo mwa yakale. Palibe chifukwa chosinthira chilichonse pamanja; pakatha masiku 60, pulogalamuyo ikonzanso satifiketi yokha.
Okonzeka! Ndinu wamkulu ndipo mwachotsa cholakwikacho.
Ndi zolakwika ziti zamakina zomwe zimakukwiyitsani?
Source: www.habr.com