bundle agent xrdp
{
# Enable trusted TLS use; overwrite default cert and key for this to work.
# On the server, configuring xrdp to actually use TLS is needed; on clients,
# the 'debian-edu-server.crt' certificate has to be imported as trusted CA one.

files:

  debian.server.ltspserver.installation::

    "/etc/xrdp/cert.pem"
      link_from => ln_s("/etc/ssl/certs/debian-edu-server.crt"),
      move_obstructions => "true";
    "/etc/xrdp/key.pem"
      link_from => ln_s("/etc/ssl/private/debian-edu-server.key"),
      move_obstructions => "true";
}