Exporting CA templates for migration
I have completed a migration of our Enterprise CA from 2003 to 2008 R2. Afterwards, I noticed from MSFT's migration guide to import templates into the destination CA. However I failed to export the...
View ArticleChanging public key algorithm of a CA certificate
Hi there,Is it possible to change the Public Key Algorithm of a CA during the certificate renewal process? It's documented that changing the Hash Algorithm is possible via the CNGHashAlgorithm registry...
View ArticleHelp understanding EventID 36886 when replacing Domain Controller
Hello,I replaced a current production 2008 R2 DC with a newly built 2012 DC. The DCPromo process worked fine, but now I see EventID 36886, Source: Schannel in my System eventlog. The Description says...
View ArticleDirectory Email Replication certificates not published to AD
What are the ramifications if Directory Email Replication certificates are successfully issued to Windows 2008 R2 Domain Controllers but not published to the DC computer object in the Active Directory?...
View ArticleCDP/AIA Location Problems After CA Migration
I've migrated an Enterprise Root CA from a Windows 2003 domain controller to a Windows 2012 member server. The new CA server and the old one have different names. All seems fine except that I have...
View ArticleCertificate services stopped on Windows server 2003 PDC CA
Hi to all, On winsrv 2003 standard DC: afer restarted, i am getting certification related erros.`Event Type: ErrorEvent Source: CertSvcEvent Category: NoneEvent ID: 5Date: 21.8.2013Time:...
View Articlenet use via Powershell returning A specified logon session does not exist. It...
I'm getting this error when running net use command via powershell.System error 1312 has occurred. + CategoryInfo : NotSpecified: (System error 1312 has occurred.:S tring) [],...
View ArticleFix CDP and AIA Locations after CA Migration
I've migrated an Enterprise Root CA from a Windows 2003 domain controller to a Windows 2012 member server. The new CA server and the old one have different names. All seems fine except that I have...
View ArticleCertificate for DPM Backups
Hi Guys, I am using Certificate on DPM Server to encrypt the tapes. I have a situation we found an issue with certifice service configuration and we might have to re install the whole thing in this...
View ArticleCertSrv RPC unavailable
I've setup up Web Enrollment on a separate Windows 2012 Server and getting "The RPC server is unavailable. 0x800706ba (WIN32: 1722)". I can see my Custom Templates. My CA is a Cluster on two 2012...
View ArticlePKI is most secure when a certificates?
. Private keys are never exchanged, public keys are exchanged in advance of the network conversation, and revocation lists are accessible. Private keys are exchanged in advance of a network...
View ArticleAccount 'Network Service'
Hi,I have a problem, some services in my windows server 2008 no up, for example: 'microsoft exchange transport', I repaired that this service up with 'network service' account and I change account...
View Articlewhat's the difference between "certutil backup" and "certutil backupdb" ?...
what's the difference between "certutil backup" and "certutil backupdb" ? which is more complete to do a full restore?i cant see the truth from the summary description of the command.
View ArticleWindows Firewall - COM+ Network Access (DCOM-In)
Hi,By default the "COM+ Network Access (DCOM-In)" inbound firewall rule from Windows Firewall is enabled. This enables you to enumerate through the DCE services running on port 135. Because this could...
View ArticleCertificate Services Event ID 90 & 130 & 102 - Can't issue certs from 2008 R2 CA
Certificate Service was running fine on my 2008 R2 server(also a DC) until a few days ago when I started logging these 2 System Errors:EVENT ID 90509.4018.3260678234: Active Directory Certificate...
View Articlelogin to network resource
I expand my Network locations in the Windows Explorer, and when I try to expand my Windows 7 machine I get a login screen. When I enter my user ID and password, it says "Login unsuccessful". I know...
View ArticleLocally cached passwords through Cisco VPN
We have a large network where 30% of our users log in through the Cisco ASA firewall (VPN). With a new GPO implemented recently forcing password changes the users who work from home are forced to...
View Article401 - Unauthorized: Access is denied due to invalid credentials
Hi All, When accessing one intranet site it's prompting for credentials and after entering it is throwing "401 - Unauthorized: Access is denied due to invalid credentials". Am facing issue with only...
View ArticlePost Enterprise Root CA Migration Errors
I believe I have covered all of the steps in the guide, however after migrating my enterprise root CA from 2008 to 2012, the Delta CRL Location #1 and #2 appear to be pointed to the old CA. While...
View Article