software restriction policy
Hi ,I need very simple thing that is create, export and import software restriction policy , can any one please let me know if any one have ready made template.Don't forget to mark helpful or...
View ArticleFindout previous deleted domain controller computer name frome SID
Hi I recently suspicious that some one in my company join new additional domain controller to my primary DC and after replication and get the domain controller partitions ,he disjoint the new...
View ArticleLDAP over SSL on Windows 2012R2 Server DCs - TLS 1.2 not working
Hi there,We've upgraded our DCs from 2008 R2 to 2012 R2.After moving the Enterprise CA from 2008 R2 to 2012 R2 domain controller (same IP, same hostname) according to this guide:...
View ArticleConsiderations for 802.1x Port Based and Wi-Fi Certificate Authentication
Lately, we have been going back and for with the thought of doing certificate authentication for Wi-Fi and Port. We have Server 2012 PKI and CA and it seems fairly straight forward to pump out a...
View ArticleWindows Activation Error 0x800704426
We have a Windows 2008 Server that we moved to a VMWare environment a few weeks ago. starting yesterday when I try to RDP, I logon and it gives me the following "Windows Activation Error 0x800704426"...
View Articleaccount unknown in user profiles
On all our domain controllers (server 2003 R2 and 2008) we have found an "account unknown" listed under My computer-properties advance-user profiles-settings. My concern is that the Account Unknown...
View ArticleLDAPS with internal CA in different forest
Hi,We have a separate forest and domain for some users and want to sync users to it with an external tool. We would like to use Secure LDAP for this but we don't want to install a CA for this domain....
View ArticleIKEv2 VPN Certificate Problem
We have deployed a Strongswan based IPSec VPN on our premises that uses Certificate authentication. It works great with all OSs except from Windows. When trying to connect to the VPN we get Error 798:...
View ArticleEvent 4674: "An operation was attempted on a privileged object" on Windows...
A while ago I enabled auditing on my WS2008 Servers and started noticing the following event repeating in the Securtiy log.Log Name: SecuritySource: Microsoft-Windows-Security-AuditingDate:...
View ArticleClik here to view.
Exchange Certificate - Revocation Check Failed
Hi,the scenario is the following:Windows 2012 R2 domainExchange 2010Windows 2012 R2 PKI (1 CA Root stand alone. 1 CA Subordinate Enterprise)At Exchange, I get the following error:The certificate...
View ArticleWindows 2003 CA support for 2012 AD
We are looking to upgrade our AD from 2003 to 2012. However we have an enterprise CA and and an offline CA, both running windows 2003. Do we need to upgrade the CA services in order to support the 2012...
View Articlea PKI Code Signing Certificate question.
Hello,Can someone please help me with the following question.I have created and used a code Signing certificate from our Microsoft Enterprise CA before which works OK, but I am not sure I did it...
View ArticleDefault Domain Controller Policy - SceCli 1202 event
My domain controller getting getting endless 1202 SceCli events occuring. I believe this is tied to a certificate expiring but i am not certain. When i check what is causing the: "Security policies...
View ArticleDrives not enumerated in BitLocker Control Panel for encryption
I have two W2k8 R2 servers built together with similar configurations. BitLocker has been enabled on both servers. One server displays OS drive as a hard disk drive and the data LUNs under the...
View ArticleOCSP Location #1 Error
I have setup an OCSP Responder and verified its functionality with certutil -url command. Yet, in PKIView, it reads OCSP Location #1 Errorhttp://ocsp.company.com/ocsp. Why?
View ArticleAre admins in different forests automatically adminis in the other forest...
Hello Community In Windows Server when you have a ForestA containing an admin and a ForestB containing an admin, if a trust relationship between ForestA and ForestB is created will the admins have...
View ArticleWhen I try to connect LDAP server with Directory certificate installed in...
10.0.0.2Accepting Directory Server certificate for /CN=qtp-ldap.oaqtp.com signed by /DC=com/DC=oaqtp/CN=qtp-ldap Skipping certificate 1 (/CN=qtp-ldap.oaqtp.com): subject issuer mismatch Certificate...
View ArticleADCS- Access is denied. 0×80070005 (WIN32: 5) - missing permissions?
Heyi get error msg when trying to enroll cert on web ui or try to add user to adcs console authority,I 'v tried the links below...
View ArticleClik here to view.
ADCS 2012 CAExchange certificate renewal
Hi My Active Directory Certificate Services appears to be functioning correctly but I have a quick question about the CAExchange Certificate automatic renewal and validity period. If you look at the...
View ArticleClik here to view.
Problem with GPO, creating Local Users
Hi, I’m trying to create new local users via GPO GPP, in domain environment. The “Password” and “Confirm Password” fields, are gray out:I know about article MS14-025, however I'm not comfortable with...
View Article