WIndows Firewall - allowing remote administration using IPSEC
Hi,I was hoping someone could help with the following issue. I need to give administrators the ability to administer some Windows 7 desktops. As these desktops could hold sensitive data, the filewall...
View ArticleEFS Encryption
Hello Folk,I have setup EFS encryption on windows 2003 server in WorkGroup Environment. The main goal was to encrypted files so if any one copies the files then he/she cannot open it. After setting up...
View ArticlePKI, domain certificates and key archival
Hi!i tested key archival configuration. i think i know how certificates are stored and where...private keys should be stored in user profile - right?and then it comes standard domain certificates -...
View ArticleStand Alone Root Certification Authority Naming
I have an AD CA on server1 which provides certificate services for an internal domain - domain.local. I have a member server on which I have a web application running. This web application will be...
View ArticleCertSingle certificate for Two site IIS on same server
My question is on certificate requirement. We have Webserver where Two NIC are bind to Two different public address. IIS installed on server with which host two websites. One for account portal &...
View ArticleWindows Server 8 administrator password
I am trying to install windows server 8 in standard mode. First machine in which I plan on building a domain. After the install I am beingasked to change the administrator password. I am stuck. This is...
View ArticleMigrated CA cannot renew certificates
I just "successfully" migrated our CA from an old Server 2003 R2 DC, to a brand new Server 2012 DC. The name of the server is the same as the old, the reg key and CA restore went through without an...
View ArticleAlternative to a directories security tab
On 2008 file shares/directories, accessed via a Win7 client, I cant see the security tab when I right click on a directory. I assume thats some sort of group policy in effect, but if I do...
View Articlepermissions report
is there any FREE way to do an access control list report in one single report that covers all shares, directories, and sub directories.I no MBSA does share/directory ACL for \\server\share level,...
View ArticleShould I Rename Root & Issuing CA Certificates Listed In The AIA
I am implementing a PKI solution that will only be used internally (for now). I have designed the solution so the AIA is only using http, to allow for any potential future requirement for clients...
View ArticleRequirements for Windows 2008 R2 Task Scheduler Security
Hi, I cannot find anything related to Windows 2008 R2 Task Scheduler Security Requirements. Everything is pointing to Windows 2003. Could someone provide me with link so I can share it with my...
View ArticleSLDAP - Certificate Creation Issue
Hi AllI am currently trying to configure SLDAP for my network. I want to do this with a self signed certificate from my CA and am using this guide.My setup is Server 2008 SP2 (not R2) Standard. The...
View ArticleWiFi Access using EAP authentication with a Computer Certificate
We have an Enterprise Certificate Infrastructure in place with an Offline RootCA server and a SubCA server that issues the certs. We created a Certificate Template for WiFi authentication and requested...
View ArticleHow to create a security structure for users and folders?
Hi everyone,I have a stand-alone Windows 2008 R2 Server that is setup using Domain Controller (again it's stand alone).I have added a separate Hard Disk (Q: Drive) for user storage but I need the...
View ArticleHow to create 3rd Party CA NTAuth trust without autoenroll
As someone who frequently sets up certificate authentication for third party web applications, one of the hardest things in Windows to troubleshoot is certificate authentication failures. During this...
View ArticleCA troubleshooting
I have a purchased 3rd party cert installed to my CA for use with an internal IIS app (citrix WI). Works fine if a access via http, but via https browser throws a 'The page cannot be displayed'. How...
View ArticleSSL Cipher Suite Order best practice
We have a web server running IIS on Windows Server 2008 R2 x64. A PCI scan on the server failed because of BEAST vulnerability. The recommended fix is to disable all block-based cipher suites or...
View ArticleCan i configure NDES to use Triple DES (3DES) algorithm for PKCS#7 encryption?
I am running SCEP client to enroll certificates on NDES server. If OpenSSL is not in FIPS mode - everything works fine.In FIPS mode i get the following error:pkcs7_unwrap():pkcs7.c:708] error...
View ArticleClik here to view.
Firewall Blocking RDP Connection
Hello,I have deployed a Windows 2008 R2 64bit Domain Controller. I am trying to enable RDP to the server so I can remotely manage the server.If I disable the Windows Firewall Domain profile then I am...
View ArticleMicrosoft Windows Server 2008 R2 CA NDES Failure – 0x800b0113 Invalid Policy
I have a CA server which I’m using to test a production design, unfortunately NDES will not install and fails whilst trying to issue the RA certificates (Exchange Enrollment Agent & CEP...
View Article