getting System.AccessViolationException
I hope I am posting in the right area after installing HF KB2742596 (operation system :microsoft server 2003 ) , existing Application throw exception Exception - System.Exception: Error getting user...
View ArticleServer 2008 R2 Administrator Password
I setup a Server 2008 standard R2 with Hyper V. I have forgotten the Administrator password on both the local and virtual side. Both the local and virtual have the same Administrator password. I do...
View ArticleDisallow a service to run unsigned .dll files.
Hi all,I have some .dll files that are running with my IIS. These files are signed by a certificate I made. My question is how can I ensure that IIS (or another service/computer) only run those .dll...
View ArticleBlock IP from logging in
I'm trying to block an IP from logging in to the DC, or doing anything else really on the Windows domain.I set a firewall rule with all protocols and programs enabled, all ports, and added the IP for...
View ArticleNDES Enrollment Issue - PasswordMax reg key being ignored. Suggestions?
Hi all,we have the NDES service configured on our CA server to dishout certs to iPads. Everything works fine EXCEPT the PasswordMax value. By default, this is 5. I have changed the value to 100 but...
View ArticleClik here to view.
Remote Assistance and Machine Authentication (your remote desktop connection...
Hi,i have an issue with being able to securely connect to my users via remote assistance (in the same domain) the issue is that if i require server authentication, or even connect but warn me is set in...
View ArticleService accounts and NT AUTHORITY\Authenticated Users
HI! I´m working on a procedure for managing service accounts. I´m pretty sure of in wich order you should use different account types in order for implementing the "principle of least privilege". In...
View Articleaccount failed to log on
Hi! We recently needed to change all admin passwords when I co worker left the company. Since then, the security logs are filling up with audit failures such as below: Log Name: Security Source:...
View Articlehelp with security log
I have the audit policy in place on my server to see which employees are accessing which files on our network. The security event log does not tell me anything about what directories or files were...
View Articlewhen installing KB2621440-x86 on Windows server 2008 32-bit, error - "This...
Hi,When installing KB2621440 on Windows server 2008 32-bit, I got this error - "this update does not apply to your system"Have confirm the patch downloaded is the correct one for the OS.Thanks in...
View ArticleChanges to Certification Authority 2012 CDP and AIA paths?
HiFor a customer I deployed a new PKI based on Windows Server 2012 since the old one was toasted. Anyway, rather quick and easy as it is a small environment.One of the services that required...
View Articlenet use
Dear All,I am having Windows Server 2008 r2, having AD Services and DNS Installed.I was tinkering around with net use command (Windows 7) and I realize I can get too much information using this command...
View ArticleDissallow access to a folder structure to all but one person
I need to be able to create a set of folders on a server and restrict read and write access to all but the currently logged-in user (and admins) thru a Batch/Command file script. I see that "subinacl"...
View ArticleActive Directory Certificate Services PKI Architecture
Hello everyone, I have some generic questions on AD CS and ultimately best practices. I have looked around and just can't find details. I have set up a lab environment using a two tiered approach...
View ArticleAD CS red X under Enterprise PKI, reinstalled OS still shows
So I have a fresh install of 08R2 joined to the domain and I went to install AD CS for the first time. I haven't really messed with AD CS before. I created an Enterprise Root CA on this server called...
View ArticleSecurity scanning - question about Windows service
Hello,As part of our internal security requirements all new servers are being scanned by a Nessus engine before being released to production. My two new Lync FE servers have been tagged with having a...
View ArticleCA for digital siganture help!
Hi all,We use InfoPath 2010 to design form and require digital signatures. I set Certificate services as this...
View ArticleNDES Account "Enterprise or Domain Admin" Requirement
We have a functional NDES environment with PKI infrastructure, but we would like to not have the SCEP Administrator account be a member of the Domain Admin group for audting and security purposes. Are...
View ArticleKerberos Security - Is there a way to get Master Key and decrypt the session...
I'm not sure but I'm just guessing that if the following scenario could be achieved: For example, there is a proxy server sitting in the middle of Kerberos Client and the Resource Server. At first,...
View ArticleTurn of automatic root certificates
I want to Turn off Automatic Root Certificates Update, which I feel can be done using the group Policy. But I am not sure what Repercussion it going to have. From the description I realise that if we...
View Article