prevent ip revers lookup
hello,is there any way with iis or configure dns i prevent to some site i.e. yougetsignal.com/ for more security ?
View ArticleDirect Access: How do you handle NLS in Multi-Site deployments?
Let´s say you have Offices in the US and in Europe. You create a DA Multi-Site deployment with DA Servers in the US and Europe and you end up with 2 dialin possibilities. Each Entry Point can be...
View Article0x8002801c error when trying to unregister scrrun.dll Win2008 R2 64bit
For the DoD STIGS, they want you to unregister the File System Component and their steps are to unregister scrrun.dllI'm on Win2008 R2, SP1, 64bit. I open a command prompt with 'run as administrator',...
View ArticleCRL Publication Question
I followed this guide on creating a Two-Tier PKI hierarchy and it all seems to work quite well except for the CRL publishing. In the guide, they walk you through creating the appropriate CDP / AIA...
View ArticleMicrosoft Windows Unquoted Service Path Enumeration.
I seek for your advice in a security issue and how to mitigate this high risk vulnerability.Microsoft Windows Unquoted Service Path Enumeration.Microsoft Windows Unquoted Service Path...
View ArticleInternet Explorer: How to restrict users from using there localized trust...
Hello,Now that IE Maintenance is now disabled since we upgraded to IE 10. How do I go about now blocking users from adding websites to the trusted websites zone? - I'd like the "Site to Zone Assignment...
View ArticleMove Certificate Services from a DC to a Standalone
We have a 2008R2 AD Catalog Server that has all of the FSMO roles. It is also configured as an Enterprise CA. I need to decommission the physical DC server and move the CA; not necessarily in that...
View ArticleResolve Domain Controller Certificate Enrollment
What is the appropriate sequence to replacing a Domain Controller certificate that was incorrectly renewed by another certificate authority on my domain. I should mention that the Domain Controller...
View ArticleIs 128 bit TLS security any good?
I was told 128 bits cipher are used in TLS or HTTPS. How do I know if it can be cracked? Is it safe?
View ArticleRDP certificate revocation check fails
I am trying to connect from one workgroup Windows Server 2012 machine to domain Windows Server 2012 machine via RDP (not terminal services). I have PKI infrastructure in domain (offline root CA - sub...
View ArticleAdministrator account does not have some administrator privileges
I'm trying to run a program on Windows 7, and keep getting a message saying that it requires administrator privileges to run. There is only one account on this computer and it, obviously, is the...
View ArticleFirewall for just USA
Our traveling (10) sales people need access our public facing Dynamics CRM, but it was being attacked all the time.I blocked everything, and the sales people have to use MyWANIP and phone in the IP for...
View ArticleCDP & AIA showing error in PKIVIEW.MSC
CDP & AIA showing error(unable to download) in PKIVIEW.MSC but when copy & paste that URL in ie that is working fine. IIS is anonymous enabled.LDAP seems ok but http error is there. That is...
View Articlepublic key size
If the public key on a certificate is 2024 bits, does that mean that the private key is of the same size?
View Articlepublic HTTPS key
Where does the public key used in HTTPS come from? Does it come from the website that I am trying to connect with?
View Article2008 R2 Certificate Authority In Place Upgrade to 2012 R2
Hello,I've been reviewing all the MS Documentation on CA Migrations, but none cover In-Place upgrades. No documentation against the idea either.We have a single Root CA running 2008 R2, I would like...
View ArticleStrange Entries in DC Security Log
We have noticed that yesterday we had a load of failed login attempts in the Security event log on one of our Domain Controllers. An example is:Event Type:Failure Audit Event Source:Security Event...
View ArticleIs Hyper-V Server compliant to FIPS (Federal Information Processing Standard)...
Hi, I was searching for whether Microsoft Hyper-V Server FIPS (Federal Information Processing Standard) 140-2 compliant? While searching on this topic, I could not find any references for the same....
View ArticleSSL automatic renewal
Hi Experts, Is there a feature / product which will make managing the certificates easier. Can we renew and bind automatically? I am considering both scenarios, SSL certificates issued by an internal...
View Article