Browse by Tags

Tagged Content List
  • Wiki Page: Active Directory Certificate Services (AD CS) Public Key Infrastructure (PKI) Frequently Asked Questions (FAQ)

    AD CS PKI FAQ Table of Contents AD CS PKI FAQ Where should I post my AD CS questions? Which blogs should I follow for AD CS? Where can I find more information about AD CS Events in the Event Viewer? What are the changes for AD CS between Windows Server 2008 and Windows Server 2008 R2? Will you post...
  • Wiki Page: AD CS Error: "The directory name is invalid." 0x8007010b (WIN32/HTTP:267)

    Sometimes when you publish new CRLs or check Application eventlog on CA server you may get error message: The directory name is invalid. 0x8007010b (WIN32/HTTP:267) : Usually this happens after incorrect CDP extension configuration on CA server. This error means that CA server was unable to...
  • Wiki Page: Active Directory Certificate Services PKI - Key Archival and Management

    Applies to Windows Server 2003, Windows Server 2003 R2, Windows Server 2008, Windows Server 2008 R2, and Windows Server 2012. This article describes best practices and provides procedures for key archival and recovery operations with certification authorities (CAs) in Active Directory® Certificate...
  • Wiki Page: AD CS Step by Step Guide: Two Tier PKI Hierarchy Deployment

    This step-by-step guide describes the steps needed to set up a basic configuration of Active Directory® Certificate Services (AD CS) in a lab environment. AD CS in Windows Server® 2008 R2 provides customizable services for creating and managing public key certificates used in software security systems...
  • Wiki Page: Active Directory Certificate Services Learning Roadmap Community Edition

    Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2008, Windows Server 2008 R2 Active Directory Certificate Services (AD CS) provides customizable services for issuing and managing public key certificates used in software security systems that employ public key technologies....
  • Wiki Page: Asking questions or providing feedback about AD CS or PKI content

    You can ask technical questions about AD CS, PKI, or provide feedback about a document on the Security Forum . Please, remember to search the forum for your answer or issue before creating a new post. If you are providing feedback about a specific document, please, begin your forum post with Content...
  • Wiki Page: AD CS: How to Obtain a List of Certificate Templates that are Superceding other Certificate Templates

    Summary In environments where there are many certificate templates in Active Directory, you may have the need to view which certificate templates are superseding others, and utilizing the Certificate Templates MMC console is not an efficient option. An example of when you might need this data...
  • Wiki Page: AD DS Site Awareness for AD CS and PKI Clients

    Table of Contents Enabling site awareness on a CA Client selection of a CA Applies to Windows®8 and Windows Server® 2012 Certificate services in Windows® 8 and Windows Server® 2012 can be configured to utilize Active Directory Domain Service (AD DS) site s to help optimize certificate services...
  • Wiki Page: Active Directory Certificate Services (AD CS) Overview

    Active Directory Certificate Services (AD CS) provides customizable services for issuing and managing public key infrastructure (PKI) certificates used in software security systems that employ public key technologies. The digital certificates that AD CS provides can be used to encrypt and digitally...
  • Wiki Page: Hardware Security Module (HSM)

    A hardware security module (HSM) is a hardware encryption device that's connected to a server at the device level, typically using PCI, SCSI, serial, or USB interfaces. An HSM is a dedicated hardware device that is managed separately from the operating system. These modules provide a secure hardware...
  • Wiki Page: Offline Root Certification Authority (CA)

    A root certification authority (CA) is the top of a public key infrastructure (PKI) and generates a self-signed certificate. This means that the root CA is validating itself (self-validating). This root CA could then have subordinate CAs that effectively trust it. The subordinate CAs receive a certificate...
  • Wiki Page: Step by Step Guide – Clustering an Existing Certification Authority

    Table of Contents Clustering the certification authority Lab environment Prerequisites specific to Contoso Understanding naming conventions in certification authority clustering Action Items Move the certification authority database to shared disk Verify the certification authority’s new database ...
  • Wiki Page: Configuring Certificate Template: "A Certificate could not be created. A private key could not be created."

    Applies to Windows Server 2008, Windows Vista, Windows Server 2008 R2, Windows 7 Best Practice for Configuring Certificate Template Cryptography Starting with Windows Vista and Windows Server 2008, the option to utilize Key Storage Providers (KSPs) in addition to Cryptographic Service Providers...
  • Wiki Page: Root CA certificate renewal

    Table of Contents Renewal with existing key pair Renewal with new key pair In this article I will discuss about Root CA certificate renewal with new and existing key pair. At first we discuss about CA certificate renewal with existing key pair. Renewal with existing key pair When you renew...
  • Wiki Page: Active Directory Certificate Services (AD CS): How to Restore the pKIEnrollmentService object

    Symptoms of a missing pKIEnrollmentService object The Policy Module "Initialize" method returned an error. Cannot find object or property. The returned status code is 0x80092004 (-2146885628). Certificate Services could not find required Active Directory information. The "Enterprise...
  • Wiki Page: Active Directory Certificate Services PKI Troubleshooting Survival Guide Reference

    The purpose of this document is to corral all the troubleshooting resources related to Windows PKI, which is branded as Active Directory Certificate Services. Table of Contents Troubleshooting PKI Problems on Windows Vista Troubleshooting an Enterprise PKI Troubleshooting Certificates Certificate...
  • Wiki Page: Securing wireless networks using an Active Directory Certificate Services PKI

    <<< Authoring in progress >>> Table of Contents Introduction Design Decisions Introduction Many organizations have tested the use of wireless LANs (WLANs) but have shied away from large deployments or banned their use altogether. Despite the many productivity and technology...
Page 1 of 1 (17 items)
Can't find it? Write it!