Why Does the System Display Invalid Certificate or Associated Chain When I Log In to a Windows ECS from a Mac?¶
Symptom¶
When you use Microsoft Remote Desktop for Mac to remotely access a Windows ECS, the system displays invalid certificate or associated chain.
Due to the particularity of the Mac system, you need to perform internal configurations on Mac and the Windows ECS to ensure successful remote connection. When you log in to the Windows ECS using Microsoft Remote Desktop for Mac, the system displays an error message indicating that the certificate or associated chain is invalid.
Possible Causes¶
The group policy setting is incorrect on the ECS.
Procedure¶
On the menu bar in the upper left corner, choose RDC > Preferences to open the preference setting page of the Microsoft Remote Desktop.
Select Security and modify the parameter settings according the following figure.
Remotely connect to the Windows ECS again. If the error message Invalid certificate or associated chain is still displayed, go to 4.
Log in to the Windows ECS using VNC.
Press Win+R to start the Open text box.
Enter gpedit.msc to access the Local Group Policy Editor.
In the left navigation pane, choose Computer Configuration > Administrative Templates > Windows Components > Remote Desktop Services > Remote Desktop Session Host > Security.
Modify the following parameters as prompted:
Enable Require use of specific security layer for remote (RDP) connections.
Disable Require user authentication for remote connections by using Network Level Authentication.
Close the group policy editor and restart the ECS.