What kind of certificate do exactly ?
Hi, I have cheap Comodo certificate for code signing. I noticed it does not work to sign DLLs to be used as AppInitDLLs for Windows Server 2008 R2. From document called "AppInit DLLs in Windows 7 and...
View ArticleNPS authenticating User based on a new "application policy extention" in a...
HI,I'm trying to get our 802.1x wireless users to be authenticated only if the user certificate have a new "application policy extention" in the certificate. Users still needs to be authenticate to our...
View ArticlePKI: One-time password retrieval
HiIs there a SCEP client in java that can be used to retrieve One-time password? Thanks.I plan to use JSCEP for CA certificate retrieval; but couldn't figure out how to retrieve OTP.
View ArticleWhen would the "datagram variant of NTLM" be used?
Hello,From:http://support.microsoft.com/default.aspx?scid=kb;EN-US;147706"Because the datagram variant of NTLM does not have a negotiation step, use of otherwise negotiated options, such as NTLMv2...
View ArticlePKI: CA certificate renewal
HiDoes Microsoft CA have Rollover Certificate? Can someone please give me a pointer on how CA certificate renewal work. THanks.
View Articlentfs & share permissions
I have a network share called Accounting which resides on a Windows 2008 server (NTFS)There is a folder called TOP_ SECRET under accounting shareTOP_SECRET has a subfolder for each employee of the...
View ArticleCreating an IPSEC connection between a server and workstation
Hello,I have a connection between a Windows 7 workstation and a Windows Server 2008 R2 server that I need to encrypt. I would like to simply use the IPSec feature of WFAS to do this.The workstation...
View ArticleCRL files not written?
Hi,I have a root ca and sub ca. The sub ca is an enterprise ca on the domain. It is configured to use 2 dedicated IIS servers as crl distribution points. However, nothing gets written to the IIS...
View ArticleLDAPS from a remote server (non-trusted)
Hello everyone,We are using a software platform (Citrix XenMobile), that allows us to use LDAP to authenticate with its web console.We can setup LDAPS, which I would prefer, however it requires a...
View ArticleClik here to view.
Sharing & Security issues in external hard disk - windows server 2003
Dear All,I have some issues with the sharing & security issues of folders/external drive in windows server 2003....
View ArticleHow to fix issues with local computer certificate?
Hey,I have Win 2003 CA server,In AD - under user properties - I can see user assigned certificates, similarly where can I see local computer assigned certificate?I have problem with 2 users, their...
View ArticleEnrollment agent certificate missing when enrolling on behalf of another user
I have an non domain-joined machine using CEP/CES to request certificates (which is working fine) and when I try to enroll on behalf of another user I get a dialog asking me to select my enrollment...
View Articledisable recursion but not forwarders on Windows Server 2012
Hi there,My security department indicate that our windows server should be "disable recursion". When I disabled the "disable recursion (also forwarders). Our DNS server can resolve the external domain...
View ArticlePost Enterprise Root CA Migration Errors
I believe I have covered all of the steps in the guide, however after migrating my enterprise root CA from 2008 to 2012, the Delta CRL Location #1 and #2 appear to be pointed to the old CA. While...
View ArticleWindows Firewall - COM+ Network Access (DCOM-In)
Hi,By default the "COM+ Network Access (DCOM-In)" inbound firewall rule from Windows Firewall is enabled. This enables you to enumerate through the DCE services running on port 135. Because this could...
View ArticlePCI scan failed by Microsoft IIS ISAPI Services are Enabled...
Hi,Recenty, I have failed PCI scan by the following reason.Microsoft IIS ISAPI Services are Enabled (http-iis-isapi-services-enabled) Disable IIS ISAPI filters and extensions as explained in the...
View ArticleMonitoring my revocation List in a Windows 2008 AD, Issuing CA in a two...
I am not quite sure how to look at or monitor my revocation list?
View ArticleSetup IIS on primary Server 2008 R2 with Active directory and direct port...
Hello,I have posted this on the IIS forums as well, but I'm interested in input as it affects the server as well:I'm fairly knowledgeable about setting up Windows servers, workstations, etc. I'm not...
View ArticleNPS and Certifications
Hi,I´m having problem here setting up NPS correctly. I can get it work and there is no problem with that but problem or question is that is it possible to get it work using only computer certificates!?...
View Article