Resources For IT Professionals
Get this Tag RSS feed
Popular Tags

Browse by Tags

 >  TechNet Articles  >  All Tags  >  PKI
Tagged Content List

  • Wiki Page: Active Directory Certificate Services (AD CS) Public Key Infrastructure (PKI) Frequently Asked Questions (FAQ)

    AD CS PKI FAQ Table of Contents AD CS PKI FAQ Where should I post my AD CS questions? Which blogs should I follow for AD CS? Where can I find more information about AD CS Events in the Event Viewer? What are the changes for AD CS between Windows Server 2008 and Windows Server 2008 R2? Will you post...
    on19 Sep 2013

  • Wiki Page: Find out if a Smart Card Was Used for Logon

    From time to time we get the question on how to find out if a user logged on to the Windows interactive session using his credentials (e.g. username / password) or by using a Smart Card. Depending on your needs you can choose two ways to gather the data: Centralized data collection The...
    on19 Sep 2013

  • Wiki Page: Step by Step Guide – Clustering an Existing Certification Authority.

    Contents Clustering the certification authority . 3 Lab environment 3 Prerequisites specific to Contoso . 3 Understanding naming conventions in certification authority clustering . 4 Action Items . 4 Move the certification authority database to shared disk ....
    on17 Sep 2013

  • Wiki Page: Test Lab Guide Mini-Module: Cross-Forest Certificate Enrollment using Certificate Enrollment Web Services

    Applies to Windows Server 2012 and Windows 8 Table of Contents Prerequisites Configuration Install and configure Litwareinc.com Install the operating system on Litwareinc-DC1 Configure the TCP/IP properties on Litwareinc-DC1 Configure Litwareinc-DC1 as a domain controller and DNS server Create a user...
    on13 Sep 2013

  • Wiki Page: Certificate Services Lifecycle Notifications

    Applies to Windows 8 and Windows Server 2012 Table of Contents Overview Event Viewer Task Scheduler Settings for Autoenrollment added to Group Policy Windows PowerShell Script for IIS Binding Scripting considerations Windows PowerShell script security Denial of service potential Do not use CertificateServicesClient...
    on13 Sep 2013

  • Wiki Page: Certificate Templates Not Available for Windows 7 and Windows Server 2008 R2 Certificate Recipients using Certificate Enrollment Web Services

    Applies to Windows 7, Windows Server 2008 R2, Windows Server 2012 You may notice some unexpected behavior when trying to deploy certificates to Windows 7 or Windows Server 2008 R2 client computers using Certificate Enrollment Web Services. Note: Certificate Enrollment Web Services is an option...
    on13 Sep 2013

  • Wiki Page: User Page: Biswajit

    Table of Contents 1. DNS 2. Group Policy Object 3. Domain Controller 4. PowerShell 5. ADDS & Windows 6. My Forums Treads 7. My Gallery Contributions 8. PKI See Also 1. DNS Nos. Description 1. Dns-design-dns-zones-for-per-organization-units 2. Dns-read-only...
    on13 Sep 2013

  • Wiki Page: LDAPs(636) and MSFT-GC-SSL(3269) Service

    Table of Contents PortQry output after promoting a DC for SSL ports LDP.EXE output after connecting the SSL ports. NETMON capture for SSL Ports Network capture without netmon Cert server into a domain controller is not recommended. Publish a cert Template certutil -v -template LDAPSSL Find the Template...
    on12 Sep 2013

  • Wiki Page: Active Directory Certificate Services PKI - Key Archival and Management

    Applies to Windows Server 2003, Windows Server 2003 R2, Windows Server 2008, Windows Server 2008 R2, and Windows Server 2012. This article describes best practices and provides procedures for key archival and recovery operations with certification authorities (CAs) in Active Directory® Certificate...
    on12 Sep 2013

  • Wiki Page: Credential Roaming

    NOTE: This document is being updated for Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows 8, and Windows Server 2012 Applies to Windows Server 2003 SP1, Windows Server 2003 R2, Windows XP SP2, Windows Server 2008, Windows Vista Credential roaming does not apply to Windows RT devices...
    on7 Sep 2013

  • Wiki Page: Enable Auto Enrollment to Avoid Expiring Certificates

    Its common that sometimes few admins miss the renewal of some key certificates in their Microsoft internal PKI (Public Key Infrastructure), this is due to the fact that its a bit of manual task and you need to set manually some Outlook reminders (My favorite method) or run schedules tasks to remind...
    on29 Aug 2013

  • Wiki Page: AD CS Step by Step Guide: Two Tier PKI Hierarchy Deployment

    This step-by-step guide describes the steps needed to set up a basic configuration of Active Directory® Certificate Services (AD CS) in a lab environment. AD CS in Windows Server® 2008 R2 provides customizable services for creating and managing public key certificates used in software security systems...
    on26 Aug 2013

  • Wiki Page: Como melhorar a Segurança da Rede com algumas soluções da Microsoft (PT-BR)

    [Nota: Este artigo foi originalmente postado em http://rodrigoi.org.br/post/Como-melhorar-a-Seguranca-da-Rede-com-algumas-solucoes-da-Microsoft.aspx /] Table of Contents Introdução Public Key Infrastructure (PKI) Sua Rede Interna está segura ? Sua Rede Wireless está segura ? Como oferecer...
    on24 Aug 2013

  • Wiki Page: Certificate Revocation List (CRL) Verification - an Application Choice

    It seems to be a FAQ disabling revocation checking in specific scenarios. This can be either a test or a formerly badly configured environment. While it is not recommended to turn off revocation checking , I want to provide you some references where you can find technical information to alter the...
    on23 Aug 2013

  • Wiki Page: Security Tools Community Edition

    We encourage you to enhance this guide by identifying missing areas (scenarios, features, lifecycle...), provide links to and write descriptions of existing content, and providing new content where there are gaps. Join the community ! Table of Contents Introduction User Account, Groups and...
    on22 Aug 2013

  • Wiki Page: The Validity Period of an Issued Certificate is Shorter than Configured

    I recently encountered couple of scenarios where one of the issued Certificates in Microsoft PKI infrastructure solution has validity period shorter than the period already configured on the template of this certificate. The main reason of changing and increasing the validity period/years for several...
    on19 Aug 2013

  • Wiki Page: How to Publish New Certificate Revocation List (CRL) from Offline Root CA to Active Directory and Inetpub

    It is highly recommended when building your Microsoft PKI (Public Key Infrastructure) to have your Root CA offline after issuing the Enterprise Sub CA certificates. It is recommended to minimize the access to the Offline Root CA as possible. The Root CA is not a domain joined machine and can be turned...
    on16 Aug 2013

  • Wiki Page: Display Subject Alternative Names of a Certificate with PowerShell

    Subject Alternative Names (SANs) are stored as System.Security.Cryptography.X509Certificates.X509Extension objects in the PowerShell Certificate Provider . First you can get the cert you want to view. $cert = get-childitem cert:\localmachine\my\73844B2206C170903185E777F65E969247462741...
    on13 Aug 2013

  • Wiki Page: PKI FAQ: What is the maximum number of names that can be included in the SAN extension?

    There is no specific limit on the number of names that can be included in the SAN extension of a certificate issued by a Windows Certificate Authority (CA). The total size, however, of any encoded extension is limited to 4KB, because that is the maximum size of the database field as defined in the...
    on12 Aug 2013

  • Wiki Page: AD CS Deployment Guidance

    Before you deploy Active Directory Certificate Services (AD CS), you should be sure that you have an understanding of the AD CS role services (see AD CS Overview ) and that you have considered PKI Design (see PKI Design Guidance ). Table of Contents Resources that demonstrate AD CS deployment...
    on31 Jul 2013

  • Wiki Page: Windows Server 2012: Certificate Template Versions and Options

    Applies to Windows Server 2012 Table of Contents Duplicating Certificate Templates Certificate Template Schema Versions Version 4 Certificate Templates Renew with the same key Support for CSPs, KSPs, and provider ordering Allow key-based renewal Enable requestor specified issuance policies ...
    on26 Jul 2013

  • Wiki Page: Certification Authority Publication URLs and flags

    I made the following diagram to help me understand the relationships among the certification authority publication URLs, flags, which flags are used in which context, and when. I hope others find it helpful.
    on25 Jul 2013

  • Wiki Page: Active Directory Certificate Services (AD CS) Clustering

    Table of Contents Applies To: Scope Windows Versions That Support Certificate Services Clustering Cluster Requirements Supported Deployment Scenarios Preparing the CA Cluster Environment Installing the Operating System on Cluster Nodes Setting Up a Shared Storage Configuring a Network HSM Installing...
    on23 Jul 2013

  • Wiki Page: PKI Store

    Sometimes we can see the same certificates in certificates store. Why this is like that? There are various stores are available for certificates. Logical store , Physical store and also we can see the certificate purpose view. 1.MMC->Certificate->View->Option 2. You can change...
    on23 Jul 2013

  • Wiki Page: Windows PKI Documentation Reference and Library

    This page was initially a copy from http://blogs.technet.com/b/pki/archive/2007/08/19/windows-pki-documentation-reference.aspx . Since TechNet Wiki is better suited to maintain continuously enhancing information, we will maintain the link library here. Table of Contents General information Community...
    on5 Jul 2013
Page 1 of 3 (64 items) 123
Can't find it? Write it!

Post an Article