Clik here to view.
execution sequence of Windows Firewall
OS: Windows Server 2008 R2Hi, what is the execution sequence in Windows Firewall? Or no execution sequence? I want to use both allow and block policies in Inboun Rules like in ISA Server.Thanks, 高麻雀
View ArticleLoad balancer F5 and get pending certificates
I have the same issue with viewing users certificates that were ordered via the web enrollment web pages. I have two web servers that are on a BigIP F5 VIP. Can anyone help here what can be done so...
View ArticleCan Non Exportable Private Keys Be Exported?
We are setting up a PKI solution for our Wifi networkI understood that user and computer certificates created with not exportable template are safe.Today i read that the private keys can be exported...
View ArticleCertificate auto enroll tries to talk to old CA server even though template...
Hi,We used to have a single CA in our resource domain that has been replaced by a corporate PKI solution that sits in a different forest.The old CA has been decommisioned and removed from the...
View Article"Specified domain either does not exist or could not be contacted" when...
Hello,I'm having trouble enrolling workstation certificates from a CA in a trusted forest. My CA is in a child domain of a root, which has a transitive trust to my forest. I've followed all of the...
View ArticleWindows 7 Delete Pending Request on Client System after Reqeust is denied on CA
Hi,I hav currently the following problem. We use Auto-Enrollment for User Certificates, but we want to Approve the Request manually on the CA. This works fine if the Certificate Request is approved....
View ArticleError:Check Revocation in CA
hi, I've installed a new Root and Subordinate CA in my network.when I want to start service in subordinate CA there is an error:The revocation function was unable to check revocation because the...
View ArticleAD CS issue in Server 2008 R2 Standard
Over the past week, at random intervals, error log reports following warning:Log Name: Application Source: Microsoft-Windows-CertificationAuthority Date: 6/6/2012 8:33:14 AM Event...
View ArticleAdding EKU/Application Policy to IPSECIntermediateOffline on Standalone CA?
I have a Standalong CA installed with NDES (SCEP) to issue Certs for Firewalls, VPN, etc. It is installed on a Member server that is connected to an AD Domcin.I'd like to add some Extended Key Usage...
View ArticleLogin/Logoff audit in a server
Hi,I have few windows server 2003 servers. I wanted to check who logged in those servers for past One month.Log auditiing through group policies is off. Can any one suggest me how to get that report..I...
View ArticleBackup and Restore Enterprise CA in Failover Cluster
Hi Guys,Wanted to know the detail procedure for Enterprise CA disaster recovery if one of the node fails in failover cluster. Failed to find out any technet article on the same.Thanks in advance
View ArticleInstalling Certificate Server in a child domain
Hello all,I need to install a Microsoft Certificate Server in a child domain. We have several users that will need to autehticate via PKI. I dont wish to involve the parent domain in any way as we do...
View ArticleCRL for Multidomain
I want to build up a two-tier-pki in a services domain and deploy certificates via Cross Forest Enrollment to other forest. One of them is a multi domain forest. I would like to know what would be the...
View ArticleRe-issuing new certs to all users transparently if there is a risk certs been...
To avoid service disruption what is best method to get new certs auto enrolled to all workstations and computers ? want a method ideally without revoking the old certificates first until new certs...
View ArticlePushing new certificates before certificates have expired using same template
Is it possible to force clients to auto enrol with new certs using same templates before existing certs expire aso the client has two certs from same template ? there is a specific rewquirement.
View Articleefs access denied
I have end users that get access denied when trying to open efs encrypted files on network share?does this have to do with expired certificate issued from site CA server when the files was used using...
View ArticleChanges to Certification Authority 2012 CDP and AIA paths?
HiFor a customer I deployed a new PKI based on Windows Server 2012 since the old one was toasted. Anyway, rather quick and easy as it is a small environment.One of the services that required...
View ArticleBest options for users accessing domain resources for non-domain PCs?
We have a few users who must use laptops not joined to our domain to access wireless and file shares. They need the ability to copy files back and forth locally, so terminal services remote desktop...
View ArticleHow to create a certificate request, for a url and url in SAN?
Hello,I am referring this article, and trying to migrate RMS to ADRMS :http://technet.microsoft.com/en-us/library/jj835767(v=ws.10).aspxI am stuck at a point where not able to create ssl certificate...
View ArticleClik here to view.
Win 8 Bitlook Encryption C:\ without TPM how to ...
Mar. 05 2013 04:11~04:14 win8pro Win 8 Bitlook Encryption C:\ without TPM how to ... for the error retouch ?BleuOisou path ..// bitloock...\
View Article