Clik here to view.
Win 2008 - PKI - Unable to Renew/Request Certificate with Same/New Key - CA...
Hi there!Here is an issue:There is only Enterprise Root CA in the domain and it is installed on the DC.We are using account which is a member of Domain Admins, Enterprise Admins, Administrators...
View Article802.1X Null User SID
Hello! We're using 802.1x with user authentication with some success. However, there are a couple users that will get notifications that "additional authentication is required". They type their...
View ArticleRevoked domain certificate by mistake, cannot unrevoke. What are my options?
Server 2012 AD 2012. This is a test lab, but I'd like to avoid rebuilding it if I can. I installed certificate services (Root CA) on the Domain Controller. I made some changes to an Exchange...
View ArticleEvent ID 4625 NULL SID
Hi Guys, We've recently upgraded a 2003 domain to an 2008 R2 domain, we've also raised the Forest from 2000 to 2008 R2This has caused part of our accounting software to play up, the software installed...
View ArticleCertificate Authority errors
Hello,I am install Exchange server 2013 on server 2012 and one of the requirement is to install Enterprise Certificate. After follow the steps required by Microsoft I run into this problems.Event ID:...
View ArticleMigrate the CSP of the CA certificate to another HSM
Hello,I try to migrate the HSM the Microsoft CA uses.I am running a Microsoft CA on a Windows Server 2008 (32bit) with an Eracom Protect Server External.I managed to export the certificate+privkey and...
View ArticleHow To Change Active Directory Certificate Authority Address
Hello,Originally when my colleagues set up our Active Directory environment, it was set up to something like :ldapserver1.hostname.localHalf way through building our AD instance, it was decided that...
View ArticleAdmin shares available to non-administrative users over loopback address
I have several RemoteApp hosts, they all have MS excel installed. All hosts are covered with multiple lockdown technologies including Applocker, Group Policy and IPSec. All drives are restricted via...
View ArticleShould a domain user who owners a folder be able to create sub-folders...
When deploying our server application, on Windows Sever 2008 R2, we create a folder in "C:\Program Files" with an local administrator user and change the owner of the folder to that of a particular...
View ArticleProblems with security logs
Hi!I have a few of virtual machines on the Hyper-V for testing:1. Win Server 2008 R2 Enterprise - Domain Controller2. Win Server 2008 R2 Enterprise - SQL 2008 R2 Express3. Win Server 2008 R2 Enterprise...
View ArticleTracking down a DNS change from a shared user account
Windows 2008 R2, this is NOT a dns server, but someone changed the DNS server's static assignment in the TCPIP properties of the LAN connection.I know what account did it, but it's a shared admin...
View ArticleWindows 2008 R2 Server Shared/folders Lose Security Settings.
I currently have UAC turned off because of other issues it causes. Currently we have an application that moves folders around under a Share, basically a document manager on the network. Periodically,...
View ArticleClik here to view.
WARNING! BEWARE! Potential Security Hole Webex and Certificates
I just had a WEBEX support session on my server with a person from a company that I would normally trust.Three Points:1. The Webex security certificate shows certification to *.webex.com. How do I know...
View ArticleTests using an unsigned CSP
In order to validate a reference standard we are researching a CSP (Cryptographic Service Provider) prototype to specific use on the Windows environment.As a rule, Microsoft requires that all DLLs in a...
View ArticleMicrosoft Windows Hardware Certificate Expired
How to update the Microsoft windows hardware certificate when is expire?
View ArticlePossible to set/force cert template for Autoenrollment?
G'dayI've been encountering a situation where a single-site AD would require having 2 CAs (more likely 1 Root + 2 Sub-CA) so that I can issue certificates for 802.1x authentication for groups of...
View ArticleKB2724197 causing ntvdm.exe to crash. Cannot run 16bit applications
After installing KB2724197 on my Windows XP and Windows Server 2003 R2 systems I cannot run a 16bit application that is vital to production at my site. Once I remove KB2724197 and reboot, everything...
View ArticleUnable to prevent access to local drives
Hi all,we run our applications on windows server 2008 r2 RDS and we have all the GPO that we know of to prevent access to local drives on the RDS servers. we have hide and prevent access enabled and...
View ArticleWindows Event ID 531
I am continuously receiving events with the event ID 531 in my SIEM tool. where as the destination is SYSTEM for all the events and source user name is blank. How will i further investigate on this log.
View ArticleNew 2008 R2 PKI coexistance with old 2003 R2 CA
I am trying to resolve an issue with the coexistance of two computer certificate from different AD integrated PKIs. We have an old 2003 R2 CA that expires soon and a new 2 tier 2008 R2 PKI. Both are...
View Article