Set up a smart card for user logon to windows server 2012 R2
Good Evening,I have Windows Server 2012 R2 Datacenter edition (dreamspark license)Is it possible to successfully set up smart card logon to a server ? I already have the smart card reader, smart card...
View ArticleIs it possible to reset SubCA private key permissions?
I have a new CA running on Windows 2008 R2 which is failing to start after reboot, the SubCA certificate's private key permissions were "updated" in an ill-conceived attempt to provide read access for...
View ArticlePKI Client Certificate Template not viewable by Windows 7 and Server 2008...
Hello everyone,I’m having issues with workgroup computers, not domain systems when I request a certificate.It’s extremely weird. It has something to do with Windows 7 and Windows 2008 machines. In 2003...
View ArticleKerberos authentication failure 0x1b
Dear All I have been researching about the below mentioned error message for awhile now. I have increased the audit report level and noticed this kind of errors. My searching revealed, that the failure...
View Articlecan't give iis users special permissions to folder in iis 8
I installed an ssl certificate to a 2012 server (had been working on a 2008 server for years). I can't duplicate the iis usrs rights that existed on the previous server. It's not available (grayed...
View ArticleConfiguring AD LDS Password Hash Algorithm
Hello,I have a client which has a requirement that the passwords in Active Directory should be stored using the Secure Hash Standard (SHS) standard. This could be SHA-1 or SHA-2.Could you please tell...
View Article401 - Unauthorized: Access is denied due to invalid credentials
After installing MSCEP, enter http://Server2008/certsrv/mscep_admin in the browser.Enter correct user name and password in pop-up box. Windows 2008 keeps rejecting the correct user name and password....
View ArticleOID in Certificate Information - General Tab
Where it should likely say "All issuance policies", it lists the OID of the root CA. In the general tab of the Certificate:Certificate InformationThis certificate is inteneded for the following...
View ArticleCACert revocation server offline
I'm using CACert for certificate verification and in Outlook none of the client certificates can be verified as the server is offline. The root is in Trusted for both HCCE_LOCAL_MACHINE and...
View ArticleWindows 2008 R2 event id 4625 status 0xc000006d
HiI have been getting these a lot in my event log.Bascially I had a person change their password, and then not be able to log into Exchange 2010.I was able to log into OWA (same box), but using NTLM or...
View ArticleMMC and Service account (MSSQLSERVER)
Hi,I am not sure where to post this question. After seeing couple of questions asked in this forum, I thought of doing same. Currently we are storing certificates on windows 2008 servers which also act...
View ArticleSecurity Log Event 4625 - After TLS Client Key Exchange - 2012 R2 Essentials
Hi allFirst time posting here so hopefully someone can help me. I have installed a Windows 2012 R2 Essentials server operating systems on a new HP server. The server, o/s, domain and Windows 8.1 pcs...
View ArticleSSTP problem on Windows Server 2008 r2, clients getting error 0x8007274C
PROBLEM: Clients keep getting error 0x8007274C when attempting to connect to the VPN server using SSTP.SYMPTOMS: - L2TP connections works great --- L2TP connections generate RemoteAccess events in...
View ArticleCertsrv not showing up in IIS
On my Subordinate CA Certsrv is not showing up as an available site in the virtual list in IIS, However on my Root CA it is there. this is a brand new server and I had no issues in my test...
View Articleshould CA server always be on
hi,I need a certificate for Intranet only RDS server/sThere is really no big problem for purchasing a cert. But after reading some discussion that there is really no gain security wise between Paid...
View ArticleIs it okay/safe to remove the Administrator account from Domain Users group??
We have a new Windows Server 2012 R2 set of servers.The administrator account is in the domain admins group, it's called site-admin, it's also in the Administrators group.The site-admin user is also a...
View ArticleWhy are some CA's now issuing SHA2 root certs?
If the signatures in root certs are not used for anything and have no security value since it requires no verification since it already lives in the trust store then why are some CA's now giving the...
View ArticleBest practices : Location of the http CDP url and Location of the web site of...
Hello Everyone ! First sorry for my bad English (i am French)I will be very happy to have You "best Practices" on the location of the Web site who store the http\CDP urlOf course my requierments here...
View ArticleClik here to view.
Psexec shows Access denied when i execute a .exe file on a remote machine
Hi All,I am using Psexec application to run exe on multiple remote machines in the domain. When i run the the .EXE i get the error message saying access is denied.I am running this script against...
View ArticleInstallation of windows server uninformed at retail.
I purchased an Asus G75VX i7 64bit notebook computer last year that had windows 8 64 bit installed but it had server software also installed. There was no notification of windows server being installed...
View Article