Windows Server 2008 Audit Failure Event 4625
Hello I have many of those events, about 10 per seconds and for about 15 minutes.An account failed to log on. Subject: Security ID: SYSTEM Account Name: WIN-ML7A3VSKKVU$ Account Domain: WORKGROUP Logon...
View ArticleReset password on Windows Server 2008 R2
Hi All, We have an Employee Self Service application running on standalone server. One of the feature of the application is "forgotten password", so employees can reset their own passwords. It works...
View ArticleThe system has detected a possible attempt to compromise security
We have two offices & two forests with a trust Office A with two domain controllers one Windows Server 2003 and Windows Server 2008r2.Office B there are two domain controllers both Windows 2003...
View ArticleSelfSigned Certificate
Hello all,First, I understand that this is the "General" forum. I am unsure which forum to ask in, so please feel free to direct me to the appropriate forum, if nobody here can help me.Ok, I've...
View ArticlePCI scan on windows 2008 R2 server giving"Self-signed TLS/SSL certificate"
"Self-signed TLS/SSL certificate"The server's TLS/SSL certificate is self-signed. Self-signed certificates cannot be trusted by default, especially because TLS/SSL man-in-the-middle attacks typically...
View ArticleServer 2003 Password Expiration Reminders
Our AD user passwords are configured to expire every 90 days. Reminders commence 14 days before expiration.I have just changed my domain administrator pwd via AD users and Computers>Password Reset,...
View ArticleMystery Inherited Permission
We have a Windows 2008 R2 server used as a file server for our user's home folders. When examining the Security permissions for a user's home folder, it shows the Everyone group has Full Control and...
View ArticleEnterprise PKI - all http locations Unable To Download
First off all servers are 2008R2 (latest updates installed) w/Forest-Domain 2008R2, all CAs (RCA, SCA) are installed on DCs that are VMs (HyperV 2008R2). I utilize SCM 2.5 for GPO settings on the DCs...
View ArticleMS CAs: Applying Principle of Least Privilege to scheduled tasks
Ive tried to search for this, but am surprised nothing relevant came up. My apologies if this is an FAQ (I would guess it would be).There seems to be at least a few regular tasks that need to be...
View ArticleServer 2008 R2 Enteprise "Enterprise root CA" option is not available when...
Hi,Running server 2008 r2 enterprise. My (CA) computer is apart of my domain and we are trying to install the AD CS role to this server. When we get to the step to Specify setup type the option to...
View ArticleCan not connect to Wireless- Possible issue with CRL
Users are unable to connect to Wifi, when verificated in RADIUS server (Domain Controller as well) found the below logs;Authentication Details: Connection Request Policy Name: Use...
View Article"This rule has been applied by the system administrator and cannot be modified"
In windows server 2008, I created a rule in "Windows firewall with advance security" sub "Connection security rule" called "test".Rule is for Authentication. require inbound and request outbound.Now, I...
View Articlecan't log on to my computer
I've had my laptop for several years and when powered up brings me to a "log on " window, where I type in my password, and then the Windows Vista OS boots and away I go. Several weeks ago, when I...
View ArticleHow do I use SignedPublicKeyAndChallenge (SPAC) with AD CA? C# or command line?
I need my users to get a local client key for mutual Auth TLS. How can I parse the SPAC response from the KeyGen HTML element that is supported in Safari, Chrome, and Firefox?Related...
View ArticlePlease clarify content authorization mechanism
Hi,I am having a problem with ACLs for my Windows Media Services content.I have an on-demand publishing point, with a playlist that references a directory.It is using anonymous authentication, and a...
View ArticleBLOCK USB of Particular Domain User
hi,we have one domain server, maintain by our corporate office so we cant change in GPO i want to know how to disable or block the USB Port(Pen drive, removable drive) of Particular Domain User.Note:...
View ArticleEncrypted Files: EFS Certificate
Hi All,I am truly hope that you will be able to help me with this as i am devastated after realizing that i lost my data from the last 10 years.I backed up my documents from win 7 to an external hard...
View ArticleCRL Check fails - Migrated SubCA from 2008r2 to 2012
I have recently migrated our Enterprise Sub Issuing CA from 2008r2 to 2012. Everything went well.. Or so I thought. This is the guide i followed:...
View ArticleNot able to connect to PEAP-MSCHAPv2
I am not sure if this has been asked before. But anyway, here goes: Our Corporate Wireless is a EAP with PEAP-MSCHAPv2. The authentication is from a Windows Server 2008. This server presents the Server...
View ArticleClik here to view.
Difference between managing certificates for user account and computer account?
I found on some occasion you can't import a third party root ca (to the trusted zone) when you run certmgr.msc,But if I add a mmc control manually and select "Computer account", the import procedure...
View Article