Creating a certificate for remote workstations running Linux
Connecting to remote workstations in Kaspersky Thin Client requires that you verify and save a certificate in the thin client. To spare users from having to verify the certificates, upload the certificates to the plug-in policy of Kaspersky Security Management Suite. The devices synchronized with Kaspersky Security Center will receive these certificates.
To create a certificate on workstations running Linux, follow the steps below.
Step 1. Create a root certificate
If you don’t have OpenSSL, run the following command:
If you have OpenSSL installed, proceed as follows:
- Generate a root key with the command:
- If you want to encrypt the key, run the command:
- To create the certificate, use the key created in the previous step and specify Common Name, Country, and other attributes in the subj parameter:
- You may be prompted to enter the key password during the execution of the command.
The root certificate will be created.
Step 2. Create a certificate for connecting to a Remote Desktop
- Generate a key with the command:
- If you want to encrypt the key, run the command:
- To request the certificate, use the key created in the previous step and specify Common Name, Country, and other attributes in the subj parameter.
- Sign the certificate request with the root certificate created earlier. The -days parameter can have any value.
The certificate for connecting to a Remote Desktop will be created.