Mimikatz hack tool dump pass from memory
Hi there,Is there some way to protect WinOS against this tool: http://blog.gentilkiwi.com/mimikatz (Sorry this is in french but the first print screen is relevant...)According to the author (no NTLM,...
View ArticleDeleting user certificates
I deployed a user certificate to a group of users with autoenroll for a product we were testing, we needed a slightly different user cert for another product and now users are getting prompted to pick...
View ArticleUnable to install the security patches KB2677070 in Windows Server 2008 R2...
Dear everyone, We are trying to install the below KB in our windows server 2008 R2 SP1, however, it will show "The update is not applicable to your computer". There is no problems to install the other...
View ArticleYou do not have sufficient permissions to enroll with SCEP
i'd like to allow "power" users on our network team to obtain certs for routers, switches, waps, etc... i've added these accounts to the local iis_iusrs group on the ca with the ndes role services, but...
View ArticleSequential Certificate Serial Numbers using Windows 2008 R2
It appears that Windows Server 2003 Certificate Services supports sequential certificate serial numbers. This was an undocumented feature that could be turned on using the certutil command or...
View ArticleHow to prevent Brut force attack?
Hello and TYIA,It looks like one of our Windows 2008 SBS is being attacked. In the security log, I see about 1400 event ID 4625 Audit Failures in the last 24 hours. They are all coming from different...
View ArticleSubject Name Confusion (SN and SAN guidelines)
I just started to learn PKI so my question may look foolish but…I'm confused with Subject Name and Subject Alternative Name. Let's take a simple example to explain what I mean.When you open site...
View ArticleEventID 675 Failure Code 0x19 (Windows Server 2003 as DC, Windows Server 2008...
Hello,We are trying to narrow down as to what is causing a lot of Kerberos Pre-Authentication Failures and logging events to Domain Controller. Every 675 event is followed by 672 for successful logon....
View ArticleBug in Authentication Policies (R2 feature)
It's possible to delete an Authentication Policy (R2), even if it is applied by an Authentication Silo. Resulting in unexpected results or an ADAC crash... probably a bug?
View ArticleRe-enrollment issue
We are upgrading the clients to Windows 8.1 with SCCM 2012 and are experience a strange issue with users and computers certificates, the clients both consist of laptops, desktops and hybrids (Lenovo...
View ArticleAttaching a computer to a Domain Server (1 WinXp 1 Win7 and 1 WinSer2003)
Good Day!Ill be describing the problem via scenarios weve encountered;Units:2 pcs Desktop Computers - 1 installed with WinXP Pro the other with Win7 Pro (both 64 bit)1 pc Server Computer - Installed...
View ArticleURGENT: What are these MS Security articles for?
Hello,We have been given a list of Security Updates to download and install on Server 2008 R2, but some of these are taking us to webpages where it appears to only be an advisory to a security...
View ArticleIncrease Subordinate CA validity
Hy,I want to build a Subordinate CA but using a different validity period. As you know the default it's 5 years (SubCA template), and I want to make it 10 years.So before I installed the Subordinate...
View ArticleClik here to view.
CA Cert validity period issue.
Hi all,i am getting this error after configuring ADCS & a subordinate -This error is received when i paste the csr contents & try to generate a certificate,Please help as i am new to...
View ArticleBitlocker: Is it possible to change the pre-boot screen?
Hi,Very simple question but I cannot seem to find any information, is it possible to customise the Bitlocker pre-boot screen so I can have my own company logo on it?Thanks
View ArticleMS11-061 still vulnerable after patch applied
I have a Windows 2008 R2 Server serving as an RDS gateway. We also use Qualys to do vulnerability scanning. Qualys is still reporting: Microsoft Windows Remote Desktop Web Access Elevation of...
View ArticleUsing a different subordinate certificate authroity template when deploying a...
I would like to extend the validity period of a subordinate CA. The default tamplate SubCA has a validiyt period of 5 years. I have duplicated this and extended the validity as required. When I install...
View Articlehow to re issuing certificate with previous serial??
Hi Guysrecently I re-install my windows and received a new Certificate from IICA but the serial number of Certificate is not same with the previous one, so I lost my encrypted Emails.now I want to know...
View ArticleCan I access EFS share on another domain?
This is really a two part question. The scenario is that I have two domain in my environment, domain1 and domain2. On domain1, I have full control of the domain and on domain2 I have no control or...
View ArticleSoftware restriction policy not working correctly
Ladies and Gents,we run a windows server 2008r2 environment.we have a software restriction policy in place for quite some time now and it's been working fine until about a week ago. here's how we have...
View Article