prevent windows from responding to OS enumerations tools
hi friends i have a public web server which is windows 2008 R2. i don't have any network firewall (TMG,....). in some websites or Applications , when i check my web server ip address, they...
View ArticleActive Directory Certificate services won't start - Error 100
I've migrated my Active Directory Certificate services Enterprise CA to a new server (and from Windows 2003 R2 x86 to Windows 2008 R2 x64).I have been having problems with checking the Certificate...
View Article802.1x certificate enrollement upgrade to 2008R2 server
Hi all,We are upgrading a site that using 802.1x client computer authentication with a local CA on a 2003 server. Currently we are moving from our Windows 2003 with a local CA to 2008R2 sp1 std server...
View Article"The RPC Server is unavailable" error requesting a certificate with...
I am creating a web service that allows users to request a certificate.The web service can be accessed with windows authentication. I would like to impersonate the authenticated user to submit the...
View ArticleWindows 7 computer template autoenrollment problems. Works manually. Works on...
Hello everyone. I could really use some assistance with getting autoenrollment working in my environment. I feel like I've tried so many things and read every article I could find on the topic. Here is...
View ArticleTrusting the CA chain
Hello all,Ive been testing the setup and config of a two tier CA with an offline root. I have that setup in a test environment and it seems happy. What I really need to do is have non-windows machines...
View ArticleCan i have 2 Enterprise Sub-ordinate CA in the same domain for different Sites?
I am working on Secure Wifi Implementation for a client who has single domain. The client is repsonsible for America Site alone where i am implementing the secure wifi. Now i read many articles and...
View ArticlePage cannot be displayed after change in SSL certificate - IIS 6 - Wildcard...
I have a server.domain.net certificate and it will stop working next month. So, i´ll change to a new wildcard certiciate (*.domain.net)After changing the certificate, the Browsers show the "Page cannot...
View ArticleRadius and WPA-2 Enterprise authentication problem
Need some suggestions here. I have just setup a Access Point to use Radius wireless auth in a test environment.1) I have a Radius global security group setup in AD. When I add the computer account...
View ArticleKerberos ticket renewal after expiration
I have virtual machine in domain. In friday's evening my colleague loged in with his credential to this machine. In several hours I ave this virtual machine. Then in monday's morning i resumed this VM...
View ArticleBehaviour of checking Allow administrator interaction when the private key is...
Setting up a new standalone root CA what is impact of selecting 'Allow administrator interaction when the private key is accessed by the CA' ? not sure yet if we will be using a HSM module (which I...
View ArticleDSCP in IPsec
Hi all, If we configure IPSec in the network, does "traffic class" field in IPv6 header encrypt or not?If it encrypts, which protocol does perform, AH or ESP?thanks.
View ArticleAccount Lock Out issue
Hi All!!!any tools we can use to trace/troubleshoot domain/local account lock out issue?? looking at eventlog is quite difficult to do analayst.
View ArticleAD Password Change Tracking
I am an administrator, with access to create/modify/delete AD objects. I also have access to modify objects via ADSIEdit but I do not have access to login on DCs.I need to track last 5 changes on an AD...
View ArticleClik here to view.
broken / deleted PKI environment
We have a PKI setup here with two cert servers - enterprise, offline root and issuing CA running on server 2008R2.Both servers were virtualised. The issue I have is (don't laugh) someone (not me)...
View ArticleEvent ID 13 Source CertificateServicesClient-CertEnroll
I am getting this event error on a Windows 2008 R2 server Log Name: Application Source: Microsoft-Windows-CertificateServicesClient-CertEnroll Date: 25/11/2013 5:06:54 AM Event ID:...
View Articlesecurity in ipv6
Hi everybody, why does tell that ipv6 is more secure than ipv4?is there any special header or field in the ipv6 while there is not in ipv4?what factor or factors cause more security in ipv6?thanks
View ArticleWin2003 Enterprise CA and 2012 r2 Offline + Enterprise subordinate...
Hello All,Cannot seem to find a guideline for this so I am unsure if it will work or not.I currently have a Windows 2003 Domain with an Enterprise CA server running on one of the domain controllers. I...
View ArticleServer 2003 R2 and SHA256 Certificates
Hi All,<o:p></o:p> <o:p></o:p>I have a server 2012 PKI infra (off line root SHA256, 4 online issuing Servers SHA256) in my server 2008 domain.<o:p></o:p>I have a...
View ArticleOCSP DMZ
Currently i have configured a CA Cluster (2012R2) and an OCSP Cluster with NLB.For external OSCSP request we are using TMG.This scenario with TMG has not turned out satisfactory and we only have one...
View Article