I am currently in the process of removing all RDP self-Signed certificates from my windows 10 desktops and windows 2012/2016 servers. I have created instructions for this process for all administrators but do not have the steps they can follow (manually), stopping the systems from regenerating the RDP self-signed certificates after we have install new certificates that have been generated from our internal MS CA. Does anybody have the step-by-step process of changing the registry key to deny this certificate generation without doing it through Power Shell? Thanks
↧