Help Center/ Elastic Cloud Server/ User Guide (Ankara Region)/ FAQs/ Remote Login FAQ/ Remote Login Errors on Windows/ Why Does the System Display Invalid Certificate or Associated Chain When I Log In to a Windows ECS from a Mac?
Updated on 2024-11-27 GMT+08:00

Why Does the System Display Invalid Certificate or Associated Chain When I Log In to a Windows ECS from a Mac?

Symptom

When you use Microsoft Remote Desktop for Mac to remotely access a Windows ECS, the system displays invalid certificate or associated chain.

Figure 1 Microsoft Remote Desktop for Mac

Due to the particularity of the Mac system, you need to perform internal configurations on Mac and the Windows ECS to ensure successful remote connection. When you log in to the Windows ECS using Microsoft Remote Desktop for Mac, the system displays an error message indicating that the certificate or associated chain is invalid.

Figure 2 Invalid certificate or associated chain

Possible Causes

The group policy setting is incorrect on the ECS.

Procedure

  1. On the menu bar in the upper left corner, choose RDC > Preferences to open the preference setting page of the Microsoft Remote Desktop.
    Figure 3 Preferences setting
  2. Select Security and modify the parameter settings according the following figure.
    Figure 4 Security setting
  3. Remotely connect to the Windows ECS again. If the error message Invalid certificate or associated chain is still displayed, go to 4.
  4. Log in to the Windows ECS using VNC.
  5. Press Win+R to start the Open text box.
  6. Enter gpedit.msc to access the Local Group Policy Editor.
  7. In the left navigation pane, choose Computer Configuration > Administrative Templates > Windows Components > Remote Desktop Services > Remote Desktop Session Host > Security.
    Figure 5 Remote Desktop Session Host
  8. Modify the following parameters as prompted:
    • Enable Require use of specific security layer for remote (RDP) connections.
      Figure 6 Require use of specific security layer for remote (RDP) connections
    • Disable Require user authentication for remote connections by using Network Level Authentication.
      Figure 7 Remote connection authentication
  9. Close the group policy editor and restart the ECS.