Schannel errors on TMG 2010 / Server 2008R2
We get the dreaded Secure Channel (schannel) error below up to 20 times a day at random times. The server is running TMG 2010 on Server 2008 R2. Some peiple seem to think that it is ok to ignore this...
View ArticleAutomatic certificate enrollment for user certs - Question
Hallo,we have a Windows 2008 R2 Domain and on one server I have installed an AD integrated certificate authority (CA). I have duplicated the User certificate template and granted the auto enroll...
View ArticleHow to configure CA to accept PKCS#10 requests
... or how to send the request correctly to CA?I'm receiving PKCS#10 request from Windows Phone and forwarding it to our Windows 2008 maschine that contains CA. In my PHP code I use CURL to...
View ArticleHow to automate file/folder permissions removal for disabled NT Id's on all...
We need help in removing file/folder permissions of teh disabled NT Id's from the member servers of the domain.
View ArticleHow can I issue computer certificates for DCs in another forest
We have a small domain that is out side of our normal forest that we want to issue certificates to. We have a enterprise CA in our primary forest that we would like to use to issue the certificates....
View Articlemove ca from 2008 to 2012
Hello,We are looking to move our CA server to a new 2012 server. I can't seem to find a place that would map out the best way to do this. Can anyone offer any suggestions? Or if there is a doc can they...
View ArticleEFS & decommissioning old Enterprise CA
I have old Windows Server 2003 domain controller with enterprise Certification Authority installed. This CA has issued some EFS certificates for users (not too many, fortunately, but to find those...
View Articleerror user name and password incorrect..
HelloI am using operating system windows vista and my system in domain. I am trying to change my password by ctr l+alt+Del next option change passwordI typed old password and typed new password i am...
View ArticleSharing Folder Auditing
Sharing Folder Auditingi have created different administrative rights ID for different admins. how come i know which Administrator ID change/add which users to access the sharing folderfor example: A...
View ArticleCRL Publication and Validity
HiI have a issuing CA server in a lab environment to test a production configuration. I have a certificate policy determined by an external body, who operate the root CA server, which state a CRL...
View ArticleWindows 2008 R2 Server is giving some normal users full administrator rights!
What I have here is just a single Windows 2008 R2 server in its own domain, a couple of users and computers - nothing complicated.So I created some users, groups and a few share, joined the computers...
View ArticleChange password after SmartCard Logon possible?
Is it possible for the user to change the password after the user logs on via smart card? When the user presses CTRL+ALT+DEL and selects "Change password" the error message (roughly)"This card requires...
View ArticleClik here to view.
Unable to renew subCA
I'm not experienced with certificates, so I'm learning this as I go. Our subordinate CA cert expired on the 24th. As I understand it, it should have automatically renewed but it didn't. I'm trying to...
View ArticleMicrosoft Windows Server 2008 R2 CA NDES Failure – 0x800b0113 Invalid Policy
I have a CA server which I’m using to test a production design, unfortunately NDES will not install and fails whilst trying to issue the RA certificates (Exchange Enrollment Agent & CEP...
View ArticleDRA Certificate has been deleted - is recovery possible?
If an expired DRA Certificate has been deleted, is it possible to restore it?
View ArticleWhy can I only Renew cert request and not generate new request when current...
I need to generate a new 2048 cert request, but the IIS 6.0 mmc doesnt offer that option. Only options are renew\replace\remove\export etc. The existing cert is still valid, but it's 1024 bit. If i...
View ArticleCannot export Private keys
Hi there.We have just built a Windows 2008R2 Enterprise PKI.The PKI is up and running fine, however when I am trying to sign a certificate with the Root CA with the "Export Private Key" option enabled,...
View ArticleClik here to view.
Office 365 ADFS 2.0 /SSO Integration lost all access to portal and e-mails
I have integrated SSO and ADFS2 with office 365 for a customer and now I'm unable to sign in with any credentials what so ever. I keep getting this message whenever I try to sign in.Your organization...
View ArticleCross-Forest CA: Computer-Object not found by Policy Module
Hi,the policy module is requesting the computer object from the wrong DC's in case the requesting computer is member of a domain with an DN that contains the DN of the CA's domain.Let's assume we have...
View ArticleProlific number of Windows error reports pertaining to 2008 R2 certificate...
Hi, We've recently added our domain enterprise certificate authority to SCOM, and it's come to light there are a significant number of Application Error and Windows Error Reporting events coming from...
View Article