Browse by Tags

Tagged Content List
  • Wiki Page: Active Directory Certificate Services (AD CS) Public Key Infrastructure (PKI) Frequently Asked Questions (FAQ)

    AD CS PKI FAQ Table of Contents AD CS PKI FAQ Where should I post my AD CS questions? Which blogs should I follow for AD CS? Where can I find more information about AD CS Events in the Event Viewer? What are the changes for AD CS between Windows Server 2008 and Windows Server 2008 R2? Will you post...
  • Wiki Page: Active Directory Sertifika Servisleri - 2 (tr-TR)

    Bir önceki yazmızda sertifika servisleri , sertifikalar ve genel kullanımlarını örneklerle açıklamıştık. Bu yazımızda , sertifikaların kullanımları ile devam edeceğiz ve farklı kullanım alanlarını inceleyeceğiz. Yazıda örneklekdireceğimiz uygulamalar , - Cisco router’a...
  • Wiki Page: Migrating Exchange KMS to Windows Server 2003 CA

    Applies to Exchange KMS and Windows Server 2003 CA Table of Contents Creating an Export Certificate Enabling Foreign Certificates Import Foreign Certificate Import Importing Users’ Keys The following are the summary steps for migrating Exchange 2000 Server KMS to a Windows Server 2003 CA. ...
  • Wiki Page: Test Lab Guide Mini-Module: Cross-Forest Certificate Enrollment using Certificate Enrollment Web Services

    Applies to Windows Server 2012 and Windows 8 Table of Contents Prerequisites Configuration Install and configure Litwareinc.com Install the operating system on Litwareinc-DC1 Configure the TCP/IP properties on Litwareinc-DC1 Configure Litwareinc-DC1 as a domain controller and DNS server Create a user...
  • Wiki Page: Certificate Services Lifecycle Notifications

    Applies to Windows 8 and Windows Server 2012 Table of Contents Overview Event Viewer Task Scheduler Settings for Autoenrollment added to Group Policy Windows PowerShell Script for IIS Binding Scripting considerations Windows PowerShell script security Denial of service potential Do not use CertificateServicesClient...
  • Wiki Page: AD CS Error: "The directory name is invalid." 0x8007010b (WIN32/HTTP:267)

    Sometimes when you publish new CRLs or check Application eventlog on CA server you may get error message: The directory name is invalid. 0x8007010b (WIN32/HTTP:267) : Usually this happens after incorrect CDP extension configuration on CA server. This error means that CA server was unable to...
  • Wiki Page: Active Directory Certificate Services PKI - Key Archival and Management

    Applies to Windows Server 2003, Windows Server 2003 R2, Windows Server 2008, Windows Server 2008 R2, and Windows Server 2012. This article describes best practices and provides procedures for key archival and recovery operations with certification authorities (CAs) in Active Directory® Certificate...
  • Wiki Page: Windows Server 2012 Active Directory Certificate Services (CA) Kurulumu TR-tr

    Merhaba.Windows Server 2012 Directory Services ile ilgili makalelerimize devam ediyoruz.Bu bölümde, Active Directory Domain Services ile entegre olarak çalışan Active Directory Certificate Services’ı açıklayıp, kurulumunu gerçekleştireceğiz. Active Directory Certificate Services, yazılım güvenlik...
  • Wiki Page: Network Device Enrollment Service (NDES) in Active Directory Certificate Services (AD CS)

    The Network Device Enrollment Service (NDES) is one of the role services of the Active Directory Certificate Services (AD CS) role. It implements the Simple Certificate Enrollment Protocol (SCEP). SCEP defines the communication between network devices and a Registration Authority (RA) for certificate...
  • Wiki Page: AD CS: Certificate Authority installation fails: "Provider could not perform the action since the context was acquired as silent. 0x80090022 (-2146893790)"

    Table of Contents Symptom Cause Resolution Symptom Certificate Authority installation fails: "Provider could not perform the action since the context was acquired as silent. 0x80090022 (-2146893790)" Cause Check the CA registry for the following value...
  • Wiki Page: AD CS Step by Step Guide: Two Tier PKI Hierarchy Deployment

    This step-by-step guide describes the steps needed to set up a basic configuration of Active Directory® Certificate Services (AD CS) in a lab environment. AD CS in Windows Server® 2008 R2 provides customizable services for creating and managing public key certificates used in software security systems...
  • Wiki Page: Certificate Chaining Engine (CCE)

    Applies to: Windows Server 2003, Windows Server 2008, Windows Server 2008 R2 Often the certificate path/revocation checking issues that certification authority (CA) admins encounter are caused by invalid CDP ( CRL Distribution Point ) or AIA ( Authority Information Access ) configuration. This article...
  • Wiki Page: AD CS Deployment Guidance

    Before you deploy Active Directory Certificate Services (AD CS), you should be sure that you have an understanding of the AD CS role services (see AD CS Overview ) and that you have considered PKI Design (see PKI Design Guidance ). Table of Contents Resources that demonstrate AD CS deployment...
  • Wiki Page: Certificate PFX Export and Import using AD DS Account Protection

    Applies to Windows 8 and Windows Server 2012 Table of Contents Introduction Requirements Command Line or Scripts Allow older client computers to access the PFX Determine the system set PFX password Introduction When exporting a PKCS#12 (PFX) digital certificate file that includes the certificates...
  • Wiki Page: Active Directory Certificate Services (AD CS) Clustering

    Table of Contents Applies To: Scope Windows Versions That Support Certificate Services Clustering Cluster Requirements Supported Deployment Scenarios Preparing the CA Cluster Environment Installing the Operating System on Cluster Nodes Setting Up a Shared Storage Configuring a Network HSM Installing...
  • Wiki Page: Windows PKI Documentation Reference and Library

    This page was initially a copy from http://blogs.technet.com/b/pki/archive/2007/08/19/windows-pki-documentation-reference.aspx . Since TechNet Wiki is better suited to maintain continuously enhancing information, we will maintain the link library here. Table of Contents General information Community...
  • Wiki Page: Public Key Infrastructure Design Guidance

    Before you configure a Public Key Infrastructure (PKI) and certification authority (CA) hierarchy, you should be aware of your organizations security policy and certificate practice statement (CPS). If your organization does not have such policy statements, you should consider creating them. For more...
  • Wiki Page: How to rename a Certificate Authority

    Applies to: Windows Server 2003, Windows Server 2008, Windows Server 2008 R2, and Windows Server 2012 Certification Authority Naming Rules The certification authority (CA) name should never be the same as the server's computer name (NetBIOS or DNS / hostname). If you use non-Latin characters...
  • Wiki Page: Active Directory Certificate Services (AD CS): Error: "In order to complete certificate enrollment, the Web site for the CA must be configured to use HTTPS authentication"

    After you install Certification Authority Web Enrollment pages, clients may see a warning message indicating that HTTPS must be used. Table of Contents Error Cause Resolution Implementing SSL on a Web site in the domain with an Enterprise CA Configure an appropriate certificate template for SSL...
  • Wiki Page: Active Directory Certificate Services Learning Roadmap Community Edition

    Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2008, Windows Server 2008 R2 Active Directory Certificate Services (AD CS) provides customizable services for issuing and managing public key certificates used in software security systems that employ public key technologies....
  • Wiki Page: CA Certificate shows Unknown Error for a subordinate CA in Enterprise PKI (PKIView.msc)

    Applies to all Windows operating system versions capable of running Enterprise PKI (PKIView) In a multitier PKI hierarchy, such as a two-tier or three tier PKI, the Enterprise PKI application will display "Unknown Error" for the CA certificate of a subordinate certification authority...
  • Wiki Page: Asking questions or providing feedback about AD CS or PKI content

    You can ask technical questions about AD CS, PKI, or provide feedback about a document on the Security Forum . Please, remember to search the forum for your answer or issue before creating a new post. If you are providing feedback about a specific document, please, begin your forum post with Content...
  • Wiki Page: Certutil Examples for Managing Active Directory Certificate Services (AD CS) from the Command Line

    Applies to: Windows Server 2003, Windows Server 2003 R2, Windows Server 2008, Windows Server 2008 R2, Windows Server 2012 Certutil.exe is a command-line program that is installed as part of Active Directory Certificate Services (AD CS). You can use Certutil.exe to dump and display certification...
  • Wiki Page: How to Configure a Static DCOM Port for AD CS

    Table of Contents To configure the Active Directory Domain Services (AD CS) certification authority (CA) service (CertSvc) to listen on a static DCOM port If you also want to disable the RPC Interface on the computer running the CertSvc Additional information To configure the Active Directory Domain...
  • Wiki Page: Reduce the Operational Risk When Defending the Open Network with Microsoft PKI

    Table of Contents Introduction Protecting an Open Network Limitations of Traditional Network Security Security Solution Requirements Solution: Microsoft PKI How Microsoft PKI Works Certificate services IPSec support Encrypted e-mail communication Wireless security Centralized management features Scenarios...
Page 1 of 3 (57 items) 123
Can't find it? Write it!