Exporting private keys from non-exportable certificates.
Hi,I have an ADFS installed on a windows server 2012 machine.The "token signing" certificate is non exportable. However, I require its private key. Is there a way to obtain the private key?Please not...
View ArticleRequest Certificate with custom values
Hello, I´m working on a deployment of StandAlone CA. Only a month ago in this country (Paraguay) we have a law about Certificate Authority and the law indicate that every certificate have to had...
View ArticleLimiting file access auditing to specific users
I'd like to enable file system logging for specific users. Presently, under Advanced Audit Policy Config on the local file server (Win 2k8 R2 Std) I have enabled Audit File Share - but I get every...
View ArticleHow to create CSR for user certificate using certmgr.msc?
Hi,I am trying to run a test by importing AD user certificate to SAP client so the user can login to SAP with their AD account. Currently, we are not running AD CS PKI infrastructure. Therefore, I will...
View ArticleFiles not getting decrypted
Hi,We have certain users who have encrypted the files in their desktops using the local certificates. Now the files are not opening nor they are able to decrypt the files. We have checked the...
View Articledeleting revoked certificates
hi friendsin enterprise CA , certification Authority Console , in revoked certificates node , is there any method to delete one or more certificates from here ? ( for example via command line ? )as wee...
View ArticleActive Directory Certificate Services could not use the provider specified in...
Recently on my Home Server 2011, three important services have been failing to run: Windows Server Addins Infrastructure Service, Windows Server Identity Management Service, Windows Server Server...
View ArticleRe-enrollment issue
We are upgrading the clients to Windows 8.1 with SCCM 2012 and are experience a strange issue with users and computers certificates, the clients both consist of laptops, desktops and hybrids (Lenovo...
View ArticleCannot export private key: "key not valid for use in specified state"
Hi,This is a bit of a long story but I hope someone can give us some guidance.We use authentication certificates issued from our own Enterprise CA to control user and machine authentication via...
View ArticleCertificate for E-mail
Hello,I am using Windows 2003 certificate server to create an internally signed certificate to use with outlook. My understanding is that I will need the public and private keys to build my PKI and...
View ArticleLocal user can able to access computer management.
one of my local user( the Domain Controller is windows server 2008 R2 Enterprise edition and the client computer is windows 7 enterprise edition) can easily access my computer-management and he can...
View ArticleMigrate certificate server, https://server/certsrv doesn't work
Yesterday we migrate our certification server from Windows 2008 R2 -> Windows Server 2012 R2.The old server name was DMBE00990013 and the new server name is DCBEHQ0001. The migration is succesfull...
View ArticleClik here to view.
digital signature for device drivers
i was unable install drivers. Check below picture. Even though i installed certificate for publisher. give me solution.clevershiva
View Articlehttps://server/certsrv can't be access after migrating to Windows Server 2012 R2
Yesterday we migrate our certification server from Windows 2008 R2 -> Windows Server 2012 R2.The old server name was DMBE00990013 and the new server name is DCBEHQ0001. The migration is succesfull...
View ArticleClik here to view.
Request does not contain a certificate template extension or the...
Hi,Need diagnosis with the following error, please:When I perform the steps in the link below and send the text file to my internal ca (by going to submit new request and selecting the txt file), I get...
View ArticleKerberos Authenication (TGT) "Event 4768" with"PID 467" and "result 0x12"
Ok so I am looking at some system logs and I have ran into multiple instances of event 4768. Like they pop up every 3-6 minutes. All logs started on the 16th of June and are ongoing. I know that this...
View ArticleEnterprise PKI - Unable to download, error AIA and OCSP
I just added a subordinate CA to my environment and am trying to get these two errors worked out. The AIA location that points to my subCA's cert errors in pkiview.msc stating it is unable to...
View ArticleMajor Problems with File Permissions Windows 2008
My GPO implementor created a GPO that tried to assign permissions to those items which are owned by trusted installer -- the permissions that were attempted to be assigned were the default permissions....
View ArticleClik here to view.
Problem with Certificate enrollment on Windows 8
Hello, our company uses a certificates (for EFS, email encryption etc.) that has in certificate template enabled setting Archive subject's encryption private key (in request handling tab). On all...
View ArticleWhy must a Domain Admin elevate to access a directory which he has full...
Given the following situation: An Enterprise/Domain Admin is logged on to a W2k8 server and wants to access a folder, which has an ACE giving Enterprise/Domain Admins full access permissions on this...
View Article