Browse by Tags

Tagged Content List
  • Wiki Page: Active Directory Certificate Services (AD CS) Public Key Infrastructure (PKI) Frequently Asked Questions (FAQ)

    AD CS PKI FAQ Table of Contents AD CS PKI FAQ Where should I post my AD CS questions? Which blogs should I follow for AD CS? Where can I find more information about AD CS Events in the Event Viewer? What are the changes for AD CS between Windows Server 2008 and Windows Server 2008 R2? Will you post...
  • Wiki Page: Single Hyper-V Server Running Windows Server 2008 R2 with GUI In Place Upgrade to Windows Server 2012 with GUI

    Please, continue to add to this article with more information for various upgrade scenarios. Table of Contents Additional References Hyper-V Server Upgrades The upgrade worked, but there are several things to be aware of before you start: No one else must be logged on to the computer when...
  • Wiki Page: Migrating Exchange KMS to Windows Server 2003 CA

    Applies to Exchange KMS and Windows Server 2003 CA Table of Contents Creating an Export Certificate Enabling Foreign Certificates Import Foreign Certificate Import Importing Users’ Keys The following are the summary steps for migrating Exchange 2000 Server KMS to a Windows Server 2003 CA. ...
  • Wiki Page: Test Lab Guide Mini-Module: Cross-Forest Certificate Enrollment using Certificate Enrollment Web Services

    Applies to Windows Server 2012 and Windows 8 Table of Contents Prerequisites Configuration Install and configure Litwareinc.com Install the operating system on Litwareinc-DC1 Configure the TCP/IP properties on Litwareinc-DC1 Configure Litwareinc-DC1 as a domain controller and DNS server Create a user...
  • Wiki Page: Certificate Services Lifecycle Notifications

    Applies to Windows 8 and Windows Server 2012 Table of Contents Overview Event Viewer Task Scheduler Settings for Autoenrollment added to Group Policy Windows PowerShell Script for IIS Binding Scripting considerations Windows PowerShell script security Denial of service potential Do not use CertificateServicesClient...
  • Wiki Page: Certificate Templates Not Available for Windows 7 and Windows Server 2008 R2 Certificate Recipients using Certificate Enrollment Web Services

    Applies to Windows 7, Windows Server 2008 R2, Windows Server 2012 You may notice some unexpected behavior when trying to deploy certificates to Windows 7 or Windows Server 2008 R2 client computers using Certificate Enrollment Web Services. Note: Certificate Enrollment Web Services is an option...
  • Wiki Page: Active Directory Certificate Services PKI - Key Archival and Management

    Applies to Windows Server 2003, Windows Server 2003 R2, Windows Server 2008, Windows Server 2008 R2, and Windows Server 2012. This article describes best practices and provides procedures for key archival and recovery operations with certification authorities (CAs) in Active Directory® Certificate...
  • Wiki Page: Credential Roaming

    NOTE: This document is being updated for Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows 8, and Windows Server 2012 Applies to Windows Server 2003 SP1, Windows Server 2003 R2, Windows XP SP2, Windows Server 2008, Windows Vista Credential roaming does not apply to Windows RT devices...
  • Wiki Page: Network Device Enrollment Service (NDES) in Active Directory Certificate Services (AD CS)

    The Network Device Enrollment Service (NDES) is one of the role services of the Active Directory Certificate Services (AD CS) role. It implements the Simple Certificate Enrollment Protocol (SCEP). SCEP defines the communication between network devices and a Registration Authority (RA) for certificate...
  • Wiki Page: Windows Server 2008: Event ID 257 - System Catalog Database Integrity

    Table of Contents Applies to Overview Event Details Resolve Repair the catalog database by using Esentutl Verify Applies to Windows Server 2008, Windows Server 2008 R2 Overview The system catalog database is used with the cryptographic services provided by the operating system to ensure...
  • Wiki Page: Event ID 2886 — LDAP Signing

    Table of Contents Applies To Overview Event Details Consider configuring the directory to reject LDAP binds that do not require signing Discover client computers that do not use signing Configuring domain controllers for LDAP signing Configuring AD LDS servers for LDAP signing Resolve Discover client...
  • Wiki Page: How to Use the Certificates Console

    Applies to Windows 2000, Windows XP, Windows Server 2003, Windows Server 2003 R2, Windows Vista, Windows 7, Windows Server 2008, Windows Server 2008 R2, Windows 8, and Windows Server 2012. Table of Contents Overview To add a Certificates console to MMC Example View Options Dialog Box To view information...
  • Wiki Page: AD CS Deployment Guidance

    Before you deploy Active Directory Certificate Services (AD CS), you should be sure that you have an understanding of the AD CS role services (see AD CS Overview ) and that you have considered PKI Design (see PKI Design Guidance ). Table of Contents Resources that demonstrate AD CS deployment...
  • Wiki Page: Certificate PFX Export and Import using AD DS Account Protection

    Applies to Windows 8 and Windows Server 2012 Table of Contents Introduction Requirements Command Line or Scripts Allow older client computers to access the PFX Determine the system set PFX password Introduction When exporting a PKCS#12 (PFX) digital certificate file that includes the certificates...
  • Wiki Page: Windows Server 2012: Certificate Template Versions and Options

    Applies to Windows Server 2012 Table of Contents Duplicating Certificate Templates Certificate Template Schema Versions Version 4 Certificate Templates Renew with the same key Support for CSPs, KSPs, and provider ordering Allow key-based renewal Enable requestor specified issuance policies ...
  • Wiki Page: Certificate Enrollment Web Services in Active Directory Certificate Services

    Applies to Windows Server 2008 R2 and Windows Server 2012 Table of Contents Introduction How Certification Authority Web Enrollment Differs from Certificate Enrollment Web Services Certificate Enrollment Capabilities Provided by Certificate Enrollment Web Services Forest Consolidation Perimeter Network...
  • Wiki Page: Configure SSL/TLS on a Web Site in the Domain with an Enterprise CA

    There are many web (HTTP) services that require secure sockets layer (SSL) / transport layer security (TLS). If you have an Windows Server-based Enterprise Certification Authority (CA), you can use the following instructions to get an SSL certificate configured for an Internet Information Services...
  • Wiki Page: Active Directory Certificate Services (AD CS) Clustering

    Table of Contents Applies To: Scope Windows Versions That Support Certificate Services Clustering Cluster Requirements Supported Deployment Scenarios Preparing the CA Cluster Environment Installing the Operating System on Cluster Nodes Setting Up a Shared Storage Configuring a Network HSM Installing...
  • Wiki Page: Windows PKI Documentation Reference and Library

    This page was initially a copy from http://blogs.technet.com/b/pki/archive/2007/08/19/windows-pki-documentation-reference.aspx . Since TechNet Wiki is better suited to maintain continuously enhancing information, we will maintain the link library here. Table of Contents General information Community...
  • Wiki Page: Public Key Infrastructure Design Guidance

    Before you configure a Public Key Infrastructure (PKI) and certification authority (CA) hierarchy, you should be aware of your organizations security policy and certificate practice statement (CPS). If your organization does not have such policy statements, you should consider creating them. For more...
  • Wiki Page: How to rename a Certificate Authority

    Applies to: Windows Server 2003, Windows Server 2008, Windows Server 2008 R2, and Windows Server 2012 Certification Authority Naming Rules The certification authority (CA) name should never be the same as the server's computer name (NetBIOS or DNS / hostname). If you use non-Latin characters...
  • Wiki Page: Error Logging into TechNet or MSDN Forums: Server Error in '/Forums' Application

    Applies to TechNet and MSDN forums Table of Contents Symptoms Server Error in '/Forums' Application. Runtime Error Cause Resolution Symptoms You attempt to logon to either the MSDN or TechNet Forums and see the following error page: Server Error in '/Forums' Application. ...
  • Wiki Page: Active Directory Certificate Services (AD CS): Error: "In order to complete certificate enrollment, the Web site for the CA must be configured to use HTTPS authentication"

    After you install Certification Authority Web Enrollment pages, clients may see a warning message indicating that HTTPS must be used. Table of Contents Error Cause Resolution Implementing SSL on a Web site in the domain with an Enterprise CA Configure an appropriate certificate template for SSL...
  • Wiki Page: Active Directory Certificate Services Learning Roadmap Community Edition

    Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2008, Windows Server 2008 R2 Active Directory Certificate Services (AD CS) provides customizable services for issuing and managing public key certificates used in software security systems that employ public key technologies....
  • Wiki Page: CA Certificate shows Unknown Error for a subordinate CA in Enterprise PKI (PKIView.msc)

    Applies to all Windows operating system versions capable of running Enterprise PKI (PKIView) In a multitier PKI hierarchy, such as a two-tier or three tier PKI, the Enterprise PKI application will display "Unknown Error" for the CA certificate of a subordinate certification authority...
Page 1 of 3 (74 items) 123
Can't find it? Write it!