Some users have reflected being bothered by Remote Desktop Gateway server's certificate has expired issue. Luckily, it is easy to solve this problem. This post analyses the causes and provides four solutions to fix it.
One of our users keeps getting the following certificate error message when try connecting a remote computer using RDP services:
Your computer can’t connect to the remote computer because the Remote Desktop Gateway server’s certificate has expired or has been revoked. Contact your network administrator for assistance.
Any suggestions on how to fix this?”
- Question from Microsoft Community
Before knowing how to fix the Remote Desktop Gateway server's certificate has expired on Windows 11/10, you need to figure out the causes of the problem and suit the methods to the situation.
All RDP certificates will have some information, including issuer name, issued, and expiry dates. So you need to check two things. First, whether the certificate is still valid. Second, whether you have the correct date and time on your workstation.
Step 1. Click the View certificate button on the certificate error warning window to view the certificate.
Step 2. You can see the expiry date there. First, ensure the certificate has not expired (if it is expired, go to Solution 3). Second, ensure you have the correct month, day, and year set on your workstation.
If the problem is related to the server certificate revocation, it will be solved by unchecking Check for server certificate revocation.
Step 1. Press Win + R, and run the “inetcpl.cpl” command.
Step 2. Go to the Advanced tab. Under the Security pane, remove the tick from Check for server certificate revocation. Click Apply, OK.
Step 3. Restart the PC and test to see if the error still occurs.
If the RDP server certificate expires, you must create a new certificate to fix the problem.
Step 1. Press Win + R, and run the "certmgr.msc" command to open Certificates snap-in within Microsoft Management Console (MMC).
Step 2. The path to the expired certificate is Certificates > Remote Desktop > Certificates. From the Consolidated Certificate Repository, remove the expired certificate (CCS).
Step 3. Run the "services.msc" command to open Services. Scroll down and locate "Remote Desktop Services". Right-click it and choose Stop to stop the RDP (Remote Desktop Services) service.
Step 4. Go to C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys, find the file f686aace6942fb7f7ceb231212eef4a4_. Take ownership of the f686 key file and give the owner user account Full Control permissions to this file. After this, delete it.
Step 5. Start the Remote Desktop Services service in Services.
Step 6. Verify that a new certificate has been generated via the Certificates snap-in in MMC.
Step 7. Check if the error still occurs.
The final solution for you is to use a Remote Desktop alternative. When selecting a Remote Desktop alternative, the sheer number of options can be enough to make your head spin. Fortunately, finding your ideal tool doesn't have to be tough. After a comprehensive comparison, we have picked the best Remote Desktop alternative.
AnyViewer is a free remote desktop application for Windows, iOS, and Android. It is the best Remote Desktop alternative for the following reasons:
Step 1. Install and run AnyViewer on both of your computers. Navigate to Log in and then Sign up on the Controller computer (if you have already registered on the official website, you can log in directly).
Step 2. Fill out the sign-up form.
Step 3. You should now see that you have successfully logged into AnyViewer. Your device will be assigned to the account to which you have logged in automatically.
Step 4. Log in to the same AnyViewer account on the two devices, then you can click One-click control to achieve a direct connection, click View the screen to see another’s screen, or click File transfer to share files between computers.
This post primarily introduces four solutions to fix the fix Remote Desktop Gateway server's certificate has expired issue. If this continues to be an issue, try a Remote Desktop alternative, for example, AnyViewer.