Can Hackers exploit a Server if User Logon Time is limited?
I have one admin account on a server 2008 standard computer and several user accounts. I have restricted logon time to work hours only and have left the admin account unlimited access time to the...
View ArticleIs TMG the right solution?
Hi All, I have a workgroup with Windows 7 & Linux machines. I have a 2008 box which is acting as file share server. The machines & the servers have incoming & outgoing traffic over the...
View ArticlePKI: 2003 Enterprise Sub CA - Is it possible to disable the issuance of the...
Hi Is it possible to stop a windows 2003 Enterprise SubCA from issuing itself a CA Exchange certificate? and if so, how? I have a client who specifically has this requirement to prevent the issuance of...
View ArticleLogon/logoff information not displayed in Event viewer / Security
HelloThe problem is following - on a DC (2008 R2) Event viewer does not display any logon / logoff information. Instead, there are thousands of following entries - "Audit Success / Source - Microsoft...
View ArticleHow to change certsrv web-interface
Hi guys. I 've installed AD Certificate services on 2003 R2 SP2 with the CA web console enrollement.How to set upa web interface,so that whenapplyinginstead of the "user certificate" defaultwasmy cert...
View ArticleClik here to view.
ADWS certificate warning 1400 despite valid certificate on all DC's
We get on every DC (2008 R2 SP1) restart a ADWS warning with the ID 1400. We have an internal Enterprise CA (installed on one of the DC's). Have added the group "Domain Controllers" to the...
View ArticleClik here to view.
Logged in as Domain Admin, unable to install appliactions
Hi,Ive just logged in with my domain admin account to a server.The domain admin is a member of the local administrators group.I try to install an application and I get this errorUAC is offAny ideas why...
View ArticleFolder Permissions: for User that is member of a Group with Deny grant and...
Hello to all.I'm using a Windows Server 2008 R2 Enterprise ServicePack 1. I'd like to define some Groups.E.g: MarketingGroup, ProductionGroup, SupportGroup.And I'd like to create some Folder with group...
View ArticleLocked Down Desktop - Still Able to Access Control Panel
We are running Windows Server 2008 R2 and Citrix XenApp 6.5. We have created a GPO to completely lock down a published user desktop on the Server. This desktop will be accessed by a handful of users...
View ArticleAuto Renewal
For auto renewal, we need to setup configuration in both GPO and template or template level setup is enough for auto renewal(for issued certificate).
View ArticleHow to set permissions so that users can not browse top folders and only...
I am not looking for shared folders but rather a way with NTFS permissions that allows single users to have FULL access to certain subfolders on a drive and not be able to list, read, or see any of the...
View ArticleUnable to Download CDP Location #1
Hello, I've just set up a two tiered CA environment. After running certutil -verify -urlfetch C:\test1.cer from my windows 7 client Pc "Test1" I receive the following error: ----------------...
View ArticleServer Security Baselines
Hi allWas task to think of a way to implement on our Windows Servers where we can monitor the security baselines against a approve standard. For example we have a set of group policy settings that...
View ArticleSmartCard Mini Driver Testing
Hello All, I'm developing a smart card mini-driver module. I installed the module using an INF file. After installation when I insert the smart card in reader, the module is loaded and I see the log is...
View ArticleSSL Certificate Issues in Windows Server 2003
I have a 2003 R2 SP2 Standard server. I have a certificate issued by a trusted CA. The certificate opens and displays the "The integrity of this certificate cannot be guaranteed. The certificate may be...
View ArticleRWX permissions
We have a share with non-sensitive but important data files, and theres a group that has RWX permissions. What aside from stealing a copy of the files can they do with these permissions?
View Articlehow can I force windows xp SP3 vpn client type username and password before...
Hiby default it is possible to make vpn connection without enter username and password when both microsoft TMF server and windows client joinde to the sam domain ,windows use loged on domain user and...
View ArticleCertificate auto enroll tries to talk to old CA server even though template...
Hi,We used to have a single CA in our resource domain that has been replaced by a corporate PKI solution that sits in a different forest.The old CA has been decommisioned and removed from the...
View ArticleAuditing for Active Directory not showing in logs
Hello, Having some trouble with auditing in our AD enviroment. We have a GPO setup that has the Audit Policy of "Audit account management" and "Audit directory service access" set to Success, Failure....
View ArticleMissed firewall on W2k8 R2
Hi!After running "boot.wim.exe" firewall service of server lost.How can I recover it?(The Windews Deployment Service boot.wim didn't worked correctly.)
View Article