Why Does the System Display Invalid Certificate or Associated Chain When I Log In to a Windows ECS from a Mac?¶
Symptom¶
When you use Microsoft Remote Desktop for Mac to remotely access a Windows ECS, the system displays invalid certificate or associated chain.
![**Figure 1** Microsoft Remote Desktop for Mac](../../_images/en-us_image_0000001122204673.png)
Figure 1 Microsoft Remote Desktop for Mac¶
Due to the particularity of the Mac system, you need to perform internal configurations on Mac and the Windows ECS to ensure successful remote connection. When you log in to the Windows ECS using Microsoft Remote Desktop for Mac, the system displays an error message indicating that the certificate or associated chain is invalid.
![**Figure 2** Invalid certificate or associated chain](../../_images/en-us_image_0000001122141457.png)
Figure 2 Invalid certificate or associated chain¶
Possible Causes¶
The group policy setting is incorrect on the ECS.
Procedure¶
On the menu bar in the upper left corner, choose RDC > Preferences to open the preference setting page of the Microsoft Remote Desktop.
Figure 3 Preferences setting¶
Select Security and modify the parameter settings according the following figure.
Figure 4 Security setting¶
Remotely connect to the Windows ECS again. If the error message Invalid certificate or associated chain is still displayed, go to 4.
Log in to the Windows ECS using VNC.
Press Win+R to start the Open text box.
Enter gpedit.msc to access the Local Group Policy Editor.
In the left navigation pane, choose Computer Configuration > Administrative Templates > Windows Components > Remote Desktop Services > Remote Desktop Session Host > Security.
Figure 5 Remote Desktop Session Host¶
Modify the following parameters as prompted:
Close the group policy editor and restart the ECS.