Request Workstation Authentication certificate not available on web
Starting with what works, across multiple Issuing Subordinates. I can request via RPC the "Workstation Authentication" certificate. However, via the web ui of the same Issuing CAs when logging in...
View ArticleKerberos Authentication - Active Directory External Trust between two domain
I have two domains connected with a one-way trust. I would like users from the Beta domain to be able to log onto servers in Alpha domain from client PC in the same domain and access...
View ArticleEventCode=4625 Account Name = Domain\Hostname$ | Is this normal? 50k+ a day
Is it normal to have events generated with the hostname, i.e. "THISCOMPUTER$" with the dollar sign after it for failed logins? Eventcode "An account failed to log on", failure Reason is "Unknown user...
View ArticleADFS Automated Certificate Rollover only for Self-Signed Certs?
We're using AD FS 2.1 on Server 2012 R2 and are currently using certificates issued from our internal CA for Service Communications and Token-signing. I wonder if AutoCertificateRollover, for our AD FS...
View Article"No Certificate Templates Could Be Found" - For Auth User
Hi All,Ihave a problem with my CA, i can ask a certificate for an administrator user with the web/certsrv and mmc console but for all auth users it's impossible.any Ideas ?Thanks :)
View ArticleHow can I set a specific user log on neme to a specific machine
Greeting,I have a question : How can I set a specific user log on name to a specific machine.e.g. Only User.A can log on to PC.A and the other can not.Base On :Windows Server 2003Active Directory...
View ArticleClik here to view.
PKI Enrollment Failed Request ASN1 Corrupted Data / ASN1 Unexpected end of data
I have just 1 user that is not able to enroll for a certificate. The Failed requests logs shows two different errors:ASN1 unexpected end of data 0x80093102 (ASN: 258)ASN1 corrupted data 0x80093103...
View ArticleSuddenly our windows 7 clients can't connect to our wireless network due to a...
Our company uses a Ruckus setup for our wireless network. The laptops have to have a certificate on them issued from our CA and be a member of AD group. Yesterday we noticed that nobody could connect...
View ArticleAuto-enrollment certificate without enroll Permission
I am Domain Admin of a company. We implement Active Directory Certificate Services in our company for email signature and encryption. Because we have more than 1000 users in our company, we want to...
View ArticleOCSP Responder configured with 3rd Party CA's
I am trying to gather information on how to configure Microsoft OCSP Responder with 3rd Party Certificate Managers like RSA RCM. There are a few install steps that are specific for AD CS and OCSP and...
View ArticleADCS Migration "encountered an error"
Hi all,I encountered a problem to migrate my ADCS standalone Root CA (Server 208) to a destination Server 2012 Standard I am following this giude:...
View ArticleMy home network has been hijacked by 169.254.18.61 and I need help...
My event logs show that it has rewritten policy and has taken my ip address. I have blocked and blocked and blocked and this morning at 4am, while I was working, I found that he had opened a guest...
View ArticleCannot write to Event Log from asp.net on Windows Server 2012 AZURE VM
I found this post...
View ArticleHou to do intra-forest domain migration of enterprise sub-ordinate CA
Hi,We have a parent-child multi domain AD environment . The root CA is placed in parent domain (Domain-A) and one enterprise sub-CA & one enterprise NDES CA in child domain (Domain-B). We have...
View Articlektpass usage and mapuser option
i just want to find out what the purpose of mapping a user to a service using ktpass is. For example i am on windows and i run ktpass like thisktpass -out <keytab location> -princ...
View ArticleCertificates - Cross Certificate
We have a 2003 Certificate Server. We wish to add a Windows 2012 Certificate Server to the same domain but preserve the Windows 2003 server for old existing certificates that are not compatible with...
View ArticleWindows Server 2008 R2 Certificate Authority does write certificates to...
I have a stand-alone root and enterprise issuing CA hierarchy. Both are configured with and AIA location to write a copy of the CA certificate to...
View ArticleDoes the uulnerability in KB329308 apply to Windows 2008 R2
I have been asked by my security team to deal with the vulnerability described in KB329308 on some Windows 2008 R2 servers. Windows 2008 R2 is not listed in the affected operating systems.Does the...
View Article401 - Unauthorized: Access is denied due to invalid credentials
After installing MSCEP, enter http://Server2008/certsrv/mscep_admin in the browser.Enter correct user name and password in pop-up box. Windows 2008 keeps rejecting the correct user name and password....
View Articlewill it be possible to manually update the windows cached password using...
when the user changes password in AD the cached password in the end user machine also update to the new password. using some client exe that we provide, is it possible to update cached password which...
View Article