Certificate Authority Windows 2008 to 2012 R2 - Clean up and Migration
Hello, I'm currently dealing with the following scenario:1. I've inherited the current infrastructure setup and the plan is to clean things up and setup a new certificate infrastructure using...
View ArticleChanging Key Length on the Root CA
I am changing the Key Length of the Offline ROOT CA from 2048 to 4096 as per best practices for the ROOTCA but my concern was the effect of it on the issued certificates from SubCA to clients. I know...
View ArticleClik here to view.
Publish certificate in AD
What is the advantage and disadvange if I check that ? Pls provide few examples . Both the cases I can enroll the cert then why I need to check that in few cases like ldap SSL. in few technet that is...
View Articlenet user and random passwords
When using net user <username> /random with default settings everything works fine.The moment /minpwlen is set to anything higher than 8 (with or without complexity requirements enabled and...
View ArticleValidate Server Certificate - Connect to These Servers
Configuring WiFi setting on windows 7 clients with WPA2 and Certificate authenticationunder "smartcard and other certificate properties"i have selected "validate server certificate" but this only works...
View ArticleOnline Responder: Revocation provider is not working on the Array controller
I have 1 OCSP/Online Responder server with 4 array members. 2 are the old enterprise subordinates and the other 2 are the new enterprise subordinates. The Online Responder Management is reporting 1...
View ArticleUnknown user name or bad password
Hi theredoes anyone know whether there is a way to see if a server is connecting to another server on the network at log on?basically, we have two sites, connected via a vpn, but seperate domains and...
View ArticleEFS Private Keys encryption base on RC4 algorithm
Hi,understand from here..http://technet.microsoft.com/en-us/library/cc962112.aspxit stated that all Private key in RootDirectory \Documents and Settings\< username>\Application...
View ArticleCertificate issued by local certificate authority (CA) is not trusted
I created a CSR for one of Windows 2012 server (let's call it SERVER01), got it issued by local certification authority and then imported it on Windows 2012 server (SERVER01). It is a computer account...
View ArticleSome settings are managed by your system administrator
In Internet Explorer 7, theSecurity tab of the Internet Options dialog box displays the following message to indicate that settings are managed by the system administrator:Some settings are managed by...
View ArticleCertutil returns 0x8007007e (WIN32/HTTP: 126 ERROR_MOD_NOT_FOUND)
Having weird problem on one issuing ca, when I run certutil on that server, it everytime returns 0x8007007e (WIN32/HTTP: 126 ERROR_MOD_NOT_FOUND): certadm.dll and same for certenroll.dllAny ideas...
View ArticleWindows server 2008 R2 lsass.exe send http request to foreign IP
Hi all.Our Active Directory system using Window Server 2008 R2 Ent that include DNS and DHCP services. Few day ago, Checkpoint firewall deteted http request send from AD server to foreing IP...
View ArticleManaging Folder's Permission and Rights with Universal Security Groups
Hello Everyone.. I've some issue dealing with a recent server migration. My current server only assigns rights to user via windows sharing and security options. It's pretty simple and i only ensure...
View ArticleUser is not a member of the Administrators group but they Can Access anything...
Ouch!Did a Server migration from Server 2003 to Server 2012 R2. Virtualized the Domain controller and a File Server.Used Robocopy, icacls and takeown to get the permisions and access to work...
View Articlewindows server 2008 CA Issue
the clients still dont trust it ! you should get " Verified by your CA " up on the browser .i dont get that at all !<p>what i know is that clients should trust the CA certificate auto as...
View ArticleRoot Certificate Causes Error Dialog
I'm using sample project for Windows Phone that comes from "A Guide to Claims-based Identity and Access Control (2.0)". Whenever I use a desktop browser to the site within the sample (that has been...
View ArticleHow to block access to Intranet Site from workstation logged in via RDP?
Here is my issue here. We have users who would make a VPN connection and then RDP to their office workstations. Once they are remote in to their office workstations, they can work as if they are in the...
View Article3 Tier CA Hierachy - Configuring the 2nd Tier
HiI am looking to set up a 3 Tier PKI to allow separation of responsibilty between geographical regions, each reion havinf it's own Policy server.I have set up a Lab with a Root CA and am now looking...
View ArticleMS CA gives error "The Parameter Is Incorrect"
Hi,I have a two tier CA hierarchy that was working just fine (receiving the certification request and issuing the certificates accordingly) since two months. I was updating the CRL configuration e.g....
View Articlehow connect to server that secured with ipsec?
hello,i want access to my server via ipsec and use certificate method i run ca server and make template for ipsec and request to server and get 2 ipsec certificate for 2 machine machine 1 and machine...
View Article