Why arent any of my certificates revoking?
So I managed to setup the 3 tier setup from the Brian Komar book, 1) My PKI is 100% OK 2) My OCSP server on the PKI is also showing OK and all certificates and setup seems to be working and OK on the...
View ArticleDisable UAC on one application for a standard user.
Hi,Now I've seen many different attempted fixes for this ridiculous issue but nothing short of installing extra software has worked. The OS being used is Windows Server 2008 R2 and this on our TS - so...
View Article2008 R2 - The user profile service failed to logon.
I manually deleted my profile from c:\users. I then started getting the error "The user profile service failed to logon.I logged in as local Admin and deleted the .bak key associated with deleted...
View ArticleUser Certificates
I am creating a user request account system that can use two different types of client certificates. As it stands now the user picks what certificate they want to send to the server.The problem with...
View ArticleComplex Client Side Validation to match Active Directory Standards
I'm trying to determine the best possible way to implement equivalent client side validation for a password reset application to enforce the same requirements as the Active Directory server it's trying...
View ArticleHKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\safer\codeidentifiers\...
For some reason, every time our Windows Server 2008 R2 SQL servers reboot, the value for the 'transparentenabled' DWORD changes back to '2', which prevents our SQL database service from starting....
View ArticleASFS Certificate requirements
We are wanting to get federated with O365. In doing so I am working on ADFS. The technet walk through lists needing a cert but doesn't really give any specific's about what is needed, or I overlooked...
View ArticleCertificate issues after migration
hi all,we have recently migrated an international office into our domain in the UK. We have migrated user, group, computer and mailboxes using ADMT server.Certain users from their finance dept used to...
View ArticleMS Outlook had problems encrypting this message...
Problem: working with two users in a test environment, I see that both can send each other signed email. However:*- Alan Reid can send Alex Heyne encrypted emailsbut- the opposite is not true (Alex...
View ArticleError during LDAP over SSL Verification
Can anyone tell me what this LDAP error message is? It appears that ADserver1 is configure to support SSL, and it establishes the connection over port 636, but I am not sure why it is throwing out the...
View ArticleKerberos Pre-Authentication Failed (30) Windows Server 2003
Hello everyone,I am trying to have a device join a domain running on a WinServer 2003 OS. In this process, my device is assigned an IP address from the running DHCP server but I end up getting a...
View ArticleWCF Service Running Excel Gets 80070005 error
We have a WCF service that returns Excel formatted reports to our users. The process works correctly in Visual Studio 2010 debug on local Windows 7 PC's using IIS Express for local WCF calls. However...
View Articlehow to block wimax devices in AD network?
i'm designer/administrator for a network with 500 clients/users. here we use extreme/cisco (mostly 2960) switches & cisco (mostly 3750) routers... we have 3 DCs running server 2k8 (not R2 yet) ,...
View ArticleWindows 2012 Entreprise CA Crl Formats
Hello everyone,I am currently building a new environment with an Offline Root CA and 2 Enterprise Sub CAs both on Windows Server 2012.I am able to publish the respective CRLs to AD and Http locations....
View ArticlePKI: Auto-enrollment of Smart Card Certificates
Hello, I have a problem with the auto-enrollment of certificates.My aims are:1) Enrollment On Behalf Of... other user 2) auto-enrollment of the same certificateEnvironment: I want to enroll a...
View ArticleBitlocker Can't enumerate, associated data is missing
Hello!I'm having an issue trying to activate Bitlocker on a 3TB drive. No matter how I format (exFAT, NTFS), separate into separate partitions (512MB + 2.79GB // single partition), or attach the drive...
View ArticleHow do I allow blank passwords for users in windows 2012 Server
How do I allow blank passwords in windows 2012 Server Standard.Everytime I try to goto group policy and change the default damin policy I get an error, saying it can't save the temple file etc.When I...
View ArticleAdding certificate based credentials to windows vault
Hi, Is there a way to add certificate based credentials to the windows vault by using the command line? I tried cmdkey but it does not have a switch to add a certificate in the windows certificate...
View ArticleComputer with Revoked Certificate can still connect
Hi,I have setup a RAS VPN server on Windows 2008 R2. I have also setup a CA on 2008 R2 DC.All is working fine and I can install computer certificates on domain members and they can then connect to the...
View ArticleClik here to view.
Why EXE file still can run even when its certificate is revoked?
Our company has a code sign certificate which is created by Verisign, we use it in a EXE file. But now this certificate is revoked from Verisign and I assume that the EXE file cannot be run on the...
View Article