HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp
Value name: SSLCertificateSHA1Hash
Value type: REG_BINARY
Value data:
Thumbprint:
“SSLCertificateSHA1Hash"=hex:42,49,e1,6e,0a,f0,a0,2e,63,c4,5c,93,fd,52,ad,09,27,82,1b,01
And the reason is: missing Server Authentication in certificate template. I had template with only 1.3.6.1.4.1.311.54.1.2 without Server Authentication. When I set value by registry - value disappeared after creation.
