Changing Certificate Subject Name NDES
We are looking to move our MDM solution into InTune. We have been testing certificate delivery and have configured the necessary NDES components within our infrastructure. For reasons that I don't...
View ArticleNTLMssp - Eventlog no info
Hello, We found some security event log entries where a user, the event log states the login was successful, It provides no IP address, or port, just workstation name.The process is Ntlmssp; is...
View ArticleWindows 2003 server getting rebooted Automatically
Hello Team,I have installed the Microsoft security patches on a windows 2003 server . After the installation of patches and reboot the server is getting rebooted automatically and resulting in...
View ArticleClik here to view.
How to find the Active\Active or Active\Passive Cluster server
Hello Team,I am aware of the Information about the Active\Active or Active\Passive Cluster Server.Active-Active high availability clusterAn active-active cluster is typically made up of at least two...
View ArticleRequest Internal Certificate for Remote Desktop, Server Authentication for...
Need help to request Internal CA Certificate for Remote Desktop, Server Authentication for Workgroup Server, could someone please suggest the process...MCP, MCTS
View ArticleCertification authority database integrity and snapshot
Hi all,I've tried to find any info about this topic but I was unsuccessful. I want to make weekly full backups of VM hosting Widows 2008 R2 certification authority (besides daily backups using...
View Articleclarification on Validity in (capolicy.inf) vs (certutil.exe -setreg...
Can someone explain the difference between the validity details that are set in the capolicy.inf vs the the ones set in the registry via certutil? If it helps lets assume I'm standing up offline root...
View ArticleA question about X509 certificate Allow Private Key to be Exported
Hello AllI have a question about the above, and want to understand what prevents the private key being exported (I have an idea but need clarification please).Working with Windows OSwhen a client...
View ArticleRenew domain controller authentication certificate
Hi. My domain controller is also a CA.Domain Controller Authentication Certificate issued by the same CA has expired.From MMC snapin under Certification Authority-->Issued Certificates I can see the...
View ArticleGlobal Audit on object access failures---not able to find location to enable it
Hello,Global Audit on object access failures is disable.we got this in a scanning tool. Could you please suggest how we can enable it.I followed below mentioned link , but problem is still...
View ArticleDigital Certificates installation with private key
I am intalling digital certificates in three servers, all of them with Windows Server 2012 R2 Standard but just in one of them the information of the private key remains available after the...
View ArticleSchannel Error Frequently
Hi, In one our server 2012, we are getting Event 36870 frequently. The event details are below.Event ID - 36870:A fatel error occured when attempting to access the SSL clinet credential private key....
View ArticleMS14-066: Vulnerability in Schannel Could Allow Remote Code Execution
Hi,For MS14-066: Vulnerability in Schannel Could Allow Remote Code Execution there is patch available for Windows 2012 R2 available at...
View ArticleWindows Server 2008 R2 unable to translate SID in folder security
Hi,I am unable to assign folders and files access permissions to my users.I am able to add a user using the username as in "active directory users and computer".However, after I apply the settings,...
View ArticleTwo-Tier Enterprise CA Hierarchy on one single server?
I am currently reading the Windows Server 2008 PKI and Certificate Security book.One chapter is about the Single-Tier Enterprise CA Hierarchy."Single-tier CA hierarchies generally are used only when...
View ArticleWindows Server 2012 R2 "The password is incorrect. Try again."
Hi,I tried to login to my Windows Server 2012 R2 and I got this message "The password is incorrect. Try again." Although the username and password are absolutely correct.Any thoughts. Thanks.
View ArticleIs it correct not to publish the Root CA Cert's AIA and CDP URLs in the Root...
Hi,Based on the statement below in Mr. Komar's Window's Server 2008 PKI and Cert Security book, in our 2-Tier implementation with 1 Server 2012 R2 Offline Root CA and 2-3 Server 2012 R2 SubOrd Issuing...
View ArticlePKI migration - how do I find all of the clients which use certs from a 2003 CA
Hi, We're migrating off our 2003 root CA to a new 2012 PKI environment. One of the clean up tasks we need to do is replace around 200 web server certificates so that they no longer use the 2003 certs,...
View ArticleWindows Server 2008 Administrator Password Reset with RAID 5 OS
Hi,We are running Windows Server 2008 (standard, not R2) on a server with the operating system installed across multiple SSD drives in a RAID 5 configuration. This system has 3 SSD drives storing...
View ArticleCA / NDES Virtual Directory Structure Missing in IIS 7 unable to implement...
We've recently finiallized both an Enterprice 2008 R2 CA and NDES service installtion configuration. All services are running, to include web enrollment for both. CA sits on a DC, as required, and...
View Article