Event ID 29, 10009, 13.... Repeat
Our former Exchange 2007 server must have been a CA as well, it was not a DC. The server was removed from the network several years ago and suddenly I'm receiving Event errors (listed in title) on all...
View ArticleTest Lab Guide: Deploying an AD CS Two-Tier PKI Hierarchy
Hi,Following this guidehttp://technet.microsoft.com/library/hh831348.aspxQuestions:1) I installed Exchange 2013 into this PKI on its own VM and tried to create a certificate for it using the APP1 or...
View ArticleMS12-060 (KB2687441) Patch Installation Issue
HiI use LANDesk Shavlik Protect to scan servers for missing security patches. I have a Windows 2008 server hosting SQL 2008. Shavlik detects patch KB2687441 as missing for two components (Microsoft...
View ArticleAD CS with PowerShell - Cannot re-add default AIA
Hi all! After installing AD CS role on Server 2012 R2 the following AIA:s are present by default:Get-CAAuthorityInformationAccess | flAddToCertificateAia : FalseAddToCertificateOcsp : FalseUri...
View ArticleCleanup after CA removal
HiI have just completed the process of decommissioning an Enterprise Issuing CA using kb889250. Step 9 talks about cleaning up the domain controllers by runningcertutil -dcinfo deletebad, however there...
View ArticleUnable to bind SSL certificate from Network Solutions
I'm not sure if this is the correct forum or not but I didn't see one that looked more suitable.I have a server running 2012 with the RDS role. I'm trying to install an SSL certificate on it in IIS8...
View ArticleCSR to Cert Authority not including SAN info.
Hello,We have a Windows 2012 CA that we have enabled SAN certs on. This has always work up to a few weeks ago. Users would create a CSR and use the CA to generate the cert successfully but they would...
View ArticleLocal Admin Rights - add / remove ?
Is there a way to add and remove local admin rights for users at logon / logoff in Server 2008? Workstations are XP sp3 and Windows 7 Sp1. We have users who move from computer to computer and they...
View ArticleUnable to Renew Certificate
I need to renew a certificate on my Exchange box but whenever I try to (or, for that matter, if I try to get a new certificate) I get the error "The permissions on the certificate template do not allow...
View ArticleCertificate Based Authentication requirement
i'm planning to implement a CBA for OWA access that will require a user certificate for authentication as this Documenthttp://www.microsoft.com/en-us/download/details.aspx?id=302My question is: if i...
View ArticleDisabling DeltaCRL - transition issues?
Disabling DeltaCRL - transition issues? When disabling DeltaCRL on a CA, will clients with already cached BaseCRL have issues (since there will be no more deltas published) until the BaseCRL expires...
View ArticleEvent 4625 question.
So we are constantly being hit by logon attempts from all over the world (mostly China). I was blocking any newly discovered IP address. But I am not sure if I see any reduction in those attempts,...
View ArticleLogon Events
We are implementing a Barracuda Web Filter in our network and for us to be able to get this to work right with Authenticated users the Barracuda looks at the DC Security log where it tracks Events 4624...
View ArticleSSPI handshake failed with error code 0x80090311
Hi guys,I get this error and i know it comes from my Linux server in an IPA domain.Error: SSPI handshake failed with error code 0x80090311But i want to trust this connection. How do i do this?Kind...
View ArticleProblem with assigning a EFS recovery agent in CA
I'm trying to implement PKI as wide as possble including EFS, sure. I did the following:1. Created custom V2 template "Custom EFS" based on "Basic EFS", assigned read/enroll/autoenroll for...
View ArticleRisk of removing NT authority\authenticated users (S-1-5-11) from group "USERS"
How to limit interactive logins to specific computers ! It's seems like everyone in the root domain and trusted domain can access the client, I would like to restrict access for specific AD groups.We...
View ArticleNetwork Information Missing in Event ID 4624
Hello, I am looking at the thousands of the security event ID's that are generated daily on most of the servers in the Hyper-V environment, and I am zoning in on the event ID 4624, which should include...
View ArticleHow to prevent Slowris/SlowHTTP attack for Windows Server 2012
Hello,I've searched online about this but I haven't found any information directly related to Windows Server 2012/iis 8.0+/ASP.NET 4.5. What are the preventative measures for Slowris/SlowHTTP...
View ArticleCan't remove Guest account from local Admonistrators group
Recently, my client's Windows Server 2008 R2 was hacked, and the Guest account is added into local Administrators group. The default Administrator account hasn't changed or renamed.When I try to remove...
View ArticleWhat Antivirus solutions for Server 2008 R2 and SBS2008 are availble from...
Microsoft has apparently made several changes to the Forefront roadway that has made it very confusing for meI am currently using "Microsoft Security Essentials" on my Server 2008 R2. Yes! I know it...
View Article