rdpsign.exe

  • File Path: C:\windows\system32\rdpsign.exe
  • Description: Remote Desktop Session Host Server Sign Tool

Hashes

Type Hash
MD5 BBEA0E321DB242112C5C2AC0F10B6C83
SHA1 C64BE57FA7B2CE13A43590C1101BBE997A5CDE31
SHA256 89412D995DFECD94256BF93978A02D0B4D349461FA9B5E0376B1928D482A1E42
SHA384 6935B8BFFCDF5936E1CA41DDEA6620559DF6B5C8DCC4D7A0D3311094FBCCEA77C07639223B01B0C8A8BCB2310D65F19D
SHA512 0B14EDC6CEC0B211A1A2AD45614EEDFD53DF3EB6256B963CFC346AC9F7937FB5ED21F2FC75B084359947EAED53AD98A0924B37E60AB968FD3F57A4A8C066B97B
SSDEEP 1536:Nz864NbAFyw/RAI/gz+PYkiOCbg/4CPJclm4az3DI5z5:Nz8pC7Rlozjkih4muAz5

Signature

  • Status: The file C:\windows\system32\rdpsign.exe is not digitally signed. You cannot run this script on the current system. For more information about running scripts and setting execution policy, see about_Execution_Policies at http://go.microsoft.com/fwlink/?LinkID=135170
  • Serial: ``
  • Thumbprint: ``
  • Issuer:
  • Subject:

File Metadata

  • Original Filename: TSSignTool.exe.mui
  • Product Name: Microsoft Windows Operating System
  • Company Name: Microsoft Corporation
  • File Version: 6.3.9600.16384 (winblue_rtm.130821-1623)
  • Product Version: 6.3.9600.16384
  • Language: English (United States)
  • Legal Copyright: Microsoft Corporation. All rights reserved.

Additional Info*

*The information below is copied from MicrosoftDocs, which is maintained by Microsoft. Available under CC BY 4.0 license.


rdpsign

Applies to: Windows Server 2022, Windows Server 2019, Windows Server 2016, Windows Server 2012 R2, Windows Server 2012

Enables you to digitally sign a Remote Desktop Protocol (.rdp) file.

[!NOTE] To find out what’s new in the latest version, see What’s New in Remote Desktop Services in Windows Server.

Syntax

rdpsign /sha1 <hash> [/q | /v |] [/l] <file_name.rdp>

Parameters

Parameter Description
/sha1 <hash> Specifies the thumbprint, which is the Secure Hash Algorithm 1 (SHA1) hash of the signing certificate that is included in the certificate store. Used in Windows Server 2012 R2 and older.
/sha256 <hash> Specifies the thumbprint, which is the Secure Hash Algorithm 256 (SHA256) hash of the signing certificate that is included in the certificate store. Replaces /sha1 in Windows Server 2016 and newer.
/q Quiet mode. No output when the command succeeds and minimal output if the command fails.
/v verbose mode. Displays all warnings, messages, and status.
/l Tests the signing and output results without actually replacing any of the input files.
<file_name.rdp> The name of the .rdp file. You must specify the .rdp file (or files) to sign by using the full file name. Wildcard characters are not accepted.
/? Displays help at the command prompt.
Remarks
  • The SHA1 or SHA256 certificate thumbprint should represent a trusted .rdp file publisher. To obtain the certificate thumbprint, open the Certificates snap-in, double-click the certificate that you want to use (either in the local computer’s certificates store or in your personal certificates store), click the details tab, and then in the Field list, click Thumbprint.

    [!NOTE] When you copy the thumbprint for use with the rdpsign.exe tool, you must remove any spaces.

  • The signed output files overwrite the input files.

  • If multiple files are specified, and if any of the .rdp files can’t be read or written to, the tool continues to the next file.

Examples

To sign an .rdp file named file1.rdp, navigate to the folder where you saved the .rdp file, and then type:

rdpsign /sha1 hash file1.rdp

[!NOTE] The hash value represents the SHA1 certificate thumbprint, without any spaces.

To test whether digital signing will succeed for an .rdp file without actually signing the file, type:

rdpsign /sha1 hash /l file1.rdp

To sign multiple .rdp files that are named, file1.rdp, file2.rdp, and file3.rdp, type (including the spaces between file names):

rdpsign /sha1 hash file1.rdp file2.rdp file3.rdp

See Also


MIT License. Copyright (c) 2020-2021 Strontic.