The Active Directory domain
The Active Directory domain has separate groups for two departments - UsersGr1 and UsersGr2. Both departments are run by one manager; his user account Boss is included in both groups. What will you do...
View ArticleCertificate web enrolment language
How do I change language of the certificate web enrolment pages?
View Article"CA certificate for this CRL has been revoked" error when checking CRL...
Hi all, we have a 2-tier PKI hierarchy with an offline Root (2012) and an Enterprise Subordinate Issuing CA (2008r2).We had to re-issue the certificate to the subordinate CA to include some new AIA...
View ArticleADCS - Auto enrollment for user certificate (with private keys)
Hello,I will deploy a WIFI architecture in my current network which will be configured with an NPS authentication and client certificate (private keys is required).In my lab, when I export manually my...
View ArticleSimulate No Response in TCP Connection (Credit Card Transaction)
I've been requested to perform a simulation of a credit card transaction in which the data is transferred to the processor but then communication cuts out before the processor can confirm that it has...
View Articlecertificate authority
Hi,I have an iis webserver which is not domain joined and can not access the CA via web.I want to issue a certificate to this web server with my MS CA enterprise and I want to assign a san attribute to...
View ArticleMS CA 2012 - NDES and user Web enrollment
Hello!I'm install standalone RootCA and enterprise SubCA. On SubCA I install Certificate Authority, NDES and CA Web Enrollment roles.I configure templates and permissions on SubCA. List of available...
View ArticleWhat are Comments and FIX Description value like from the result of "wmic...
I would like to identify patch class(critical update,security update,feature pack,etc) from the result of wmic qfe.Is there any way ?
View ArticleADCS - Certificate template (EAP-TLS) for WIFI connexion (duplicate of User...
Hello, Recently, I created a template for the user auto enrollment required for our WIFI. Checking manually to enroll certificate with the defaut "User" template, connexion is OK but this template can...
View ArticleIIS Server 7.5 403 Forbidden Access Denied Error after submitting login Page
Hi All, Need help to resolve below error: 403 - Forbidden: Access is denied. You do not have permission to view this directory or page using the credentials that you supplied. Getting this error once...
View ArticleNext CRL Publish Date
I have a simple scenario on my Enterprise Issuing CAs"CRL Validity = 15 days.I want the Next CRL publish to be on the 7th day rather than the 14th day which is only one day before the CRL expires to...
View ArticleDCOM RPC Interface Buffer Overrun Vulnerability
I would like to know if this vulnerability still exist on Windows 2008 servers? All infos that I found for this vulnerability stop at Windows server 2003. Thank you
View ArticleClik here to view.
Firewall Blocking RDP Connection
Hello,I have deployed a Windows 2008 R2 64bit Domain Controller. I am trying to enable RDP to the server so I can remotely manage the server.If I disable the Windows Firewall Domain profile then I am...
View ArticleWindows 2008 R2 AD CS enterprise and stanalone ca for AD user certificate
Hi,We are running Windows server 2008 R2 Active directory domain. Planning to implement single sign on solution for an application. However, all of our clients are running Mac and they do not join to...
View ArticleADCS sessions
In ADCS on Windows 2008R2 we are getting " An attempt was made to open a Certification Authority database session, but there are already too many active sessions" on a request...
View ArticleResource-based constrained delegation in real world
Hi allI have a very simple scenario: web server + back-end server with serviceThe web server (Application Pool Account) and back-end service both running under AD account. Using standard delegation...
View ArticleRE: WMI Monitoring - Security
HiI am currently using a product to monitor our network which can make use of wmic. Currently connecting to remote machines require a username and password. What would be the best approach to secure...
View Articlemigrate from nCipher nShield F3 500 PCI to Windows CA
HiWe already have Stand Alone Root CA with HSM and Subordinate CA Enterprise Edition with HSM on windows 2003. We want to move CA to Windows 2012 without HSM. We want to virtualize all naw CA...
View ArticleClik here to view.
Migrate enterprise CA from 2003 to 2012
HiI migrate root CA from 2003 to 2012. To verify i try enroll the cert but got the error id 13.i think the position <Data Name="CA">N/A</Data> can be the reason of this issue. The firewall...
View ArticleSecurity Event 5061 Source: System Integrity AND System Event 36888 Source:...
Hello,W2K8 R2 SP1 + EX2010 SP1 RU5 Can anyone point me to some direction, what should I look if I'm getting errors like below: I thint, that this error is somehow related to ActiveSync clients but I'm...
View Article