Resources For IT Professionals
Get this Tag RSS feed
Popular Tags

Browse by Tags

 >  TechNet Articles  >  All Tags  >  certificate
Tagged Content List

  • Wiki Page: How to Create a Certificate Trust List in Windows Server 2008 R2 for Use with Unified Access Gateway

    In Windows 2008 R2 it is (not yet) possible to create a certificate trust list (CTL) in order to restrict login with user certificates to IIS only to specific Certificate Authorities. However CTLs can be imported and then used with IIS. In order to achieve this, we need to use the utility MakeCTL which...
    on16 Sep 2013

  • Wiki Page: Certificate Services Lifecycle Notifications

    Applies to Windows 8 and Windows Server 2012 Table of Contents Overview Event Viewer Task Scheduler Settings for Autoenrollment added to Group Policy Windows PowerShell Script for IIS Binding Scripting considerations Windows PowerShell script security Denial of service potential Do not use CertificateServicesClient...
    on13 Sep 2013

  • Wiki Page: How to Renew the ConfigMgr 2007 Site Server Signing Certificate (Microsoft Certificate Services)

    Have you tried to renew the existing site server signing certificate for a native mode site, and wondered how to do this without creating a new certificate? This post provides a procedure to do this that is suitable for when the site server is on either Windows Server 2003 or Windows Server 2008, and...
    on13 Sep 2013

  • Wiki Page: AD FS 1.0 and 1.1: How to Replace the SSL, Token-Signing, and Federation Server Proxy Certificates

    Replacing the SSL certificate 1. Obtain a new certificate with the following requirements a. Enhanced Key Usage is at least Server Authentication . If you are obtaining this from an internal MS Enterprise CA, the Web Server template will work fine. b. Subject or Subject Alternative...
    on10 Sep 2013

  • Wiki Page: Lync Certificate Planning and Assignments

    Lync Certificate Planning and Assignments (Edge, Reverse Proxy, Director, Frontend, Mediation, WAC) Copyright© and written 2013 by Thomas Pött, MVP Lync/ Unified Communication Table of Contents 1 About the Author: 2 GENERAL 3 Server Components (Certificates are requited...
    on5 Sep 2013

  • Wiki Page: Enable Auto Enrollment to Avoid Expiring Certificates

    Its common that sometimes few admins miss the renewal of some key certificates in their Microsoft internal PKI (Public Key Infrastructure), this is due to the fact that its a bit of manual task and you need to set manually some Outlook reminders (My favorite method) or run schedules tasks to remind...
    on29 Aug 2013

  • Wiki Page: Certificate Revocation List (CRL) Verification - an Application Choice

    It seems to be a FAQ disabling revocation checking in specific scenarios. This can be either a test or a formerly badly configured environment. While it is not recommended to turn off revocation checking , I want to provide you some references where you can find technical information to alter the...
    on23 Aug 2013

  • Wiki Page: The Validity Period of an Issued Certificate is Shorter than Configured

    I recently encountered couple of scenarios where one of the issued Certificates in Microsoft PKI infrastructure solution has validity period shorter than the period already configured on the template of this certificate. The main reason of changing and increasing the validity period/years for several...
    on19 Aug 2013

  • Wiki Page: How to Publish New Certificate Revocation List (CRL) from Offline Root CA to Active Directory and Inetpub

    It is highly recommended when building your Microsoft PKI (Public Key Infrastructure) to have your Root CA offline after issuing the Enterprise Sub CA certificates. It is recommended to minimize the access to the Offline Root CA as possible. The Root CA is not a domain joined machine and can be turned...
    on16 Aug 2013

  • Wiki Page: SharePoint 2010: Configure SSL for a web site (fr-FR)

    Apres avoir incorporé le Form Based Authentication dans une de mes web App, la grande discussion était de savoir si l’on allait passer par le port 443 ou port 80. Grande nouvelle pour la société on passe à travers le 443 et donc mauvaise nouvelle pour moi, c’est parti pour la configuration SSL. ...
    on13 Aug 2013

  • Wiki Page: How to Create a x509 Certificate for Windows Azure SQL Database Management API

    The Windows Azure SQL Database Management API requires mutual authentication of certificates. Any valid X.509 v3 certificate can be used. You must first upload a public key certificate (.cer) file to the Windows Azure certificate store, and associate it with a subscription. Then, you attach the matching...
    on7 Aug 2013

  • Wiki Page: Certificate Management Resource Wiki

    Table of Contents RSS FEEDS CLM FAQ FIM Technical Library ( link ) CLMUtil Blogs Downloads Test lab guides Virtual labs Webcasts, videos and events Podcasts Wiki See Also RSS FEEDS If you want to be kept up-to-date automatically when new articles or posts are submitted, you can subscribe to the...
    on30 Jul 2013

  • Wiki Page: Configure SSL/TLS on a Web Site in the Domain with an Enterprise CA

    There are many web (HTTP) services that require secure sockets layer (SSL) / transport layer security (TLS). If you have an Windows Server-based Enterprise Certification Authority (CA), you can use the following instructions to get an SSL certificate configured for an Internet Information Services...
    on23 Jul 2013

  • Wiki Page: Public Key Infrastructure Design Guidance

    Before you configure a Public Key Infrastructure (PKI) and certification authority (CA) hierarchy, you should be aware of your organizations security policy and certificate practice statement (CPS). If your organization does not have such policy statements, you should consider creating them. For more...
    on4 Jul 2013

  • Wiki Page: Deploying RD Gateway using a Scenario Based Deployment

    This Wiki runs you through the setup to add a RD Gateway role to an existing Remote Desktop Services Scenario. The RD Gateway role is one of the two roles that, as of yet, cannot be deployed using the inital scenario based deployment. That's why adding the RD Gateway envolves the following steps...
    on26 May 2013

  • Wiki Page: Troubleshooting: RMS 1.0 Sp2 On Windows server 2003 Sp2 - Error User certificate or Machine not activated

    Error Message The error message is posted on the TechNet article - http://ow.ly/lo5u6 when you rum IRM check (Latest version is available on - http://aka.ms/irmcheck ) . Resolution Warning Using Registry Editor incorrectly can cause serious problems that may require...
    on25 May 2013

  • Wiki Page: AD FS 2.0: How to Replace the SSL, Service Communications, Token-Signing, and Token-Decrypting Certificates

    Table of Contents Replacing the SSL and Service Communications certificate Replacing the Token-Signing certificate Replacing the Token-Decrypting certificate More Information Were you looking for AD FS 1.x information regarding certificate replacement? Have you recently enabled AutoCertificateRollover...
    on15 May 2013

  • Wiki Page: Event ID 1220 — LDAP over SSL (LDAPS)

    Table of Contents Applies to Overview Event Details Resolve Configure LDAP over SSL Verify Related Management Information Applies to Windows Server 2003, Windows Server 2003 R2, Windows Server 2008, Windows Server 2008 R2, Windows Server 2012 Overview The TechNet Library version of...
    on9 May 2013

  • Wiki Page: How to Generate a Self-Signed Certificate Using PowerShell

    Overview There may come a time when a certificate is needed for testing purposes, and a certification authority (CA) is not readily available. The sample script below provides the following: -Self-signed certificates in the Local Machine Personal store -2048 lenth private keys marked exportable...
    on23 Apr 2013

  • Wiki Page: AD FS 2.0: How To Modify The Duration of AutoCertificateRollover Certificates

    Overview By default in AD FS 2.0, the self-signed certificates generated by AutoCertificateRollover are valid for 365 days. Although AD FS 2.0 will maintain these certificates for the service, it is the responsibility of the AD FS 2.0 administrator or the Claims Proivder/Relying Party partner administrator...
    on23 Feb 2013

  • Wiki Page: SBS 2011: Repair Certificate Issues

    How to Repair Certificate Issues in Windows Small Business Server 2011, Windows Home Server 2011, and Windows Storage Server 2008 R2 Essentials Table of Contents Applies To: Background Symptoms Cause Solution Applies To: Windows Small Business Server 2011, Windows Home Server 2011,...
    on22 Feb 2013

  • Wiki Page: Certificates Help

    This topic extends the help provided for certificates in Windows. Table of Contents Certificate Path Validation Settings Stores tab Trusted Publishers tab Network Retrieval tab Revocation tab Domain Group Policy Credential roaming Certificate autoenrollment Certificate path validation Certificate...
    on13 Feb 2013

  • Wiki Page: Errata in Windows Server® 2008 PKI and Certificate Security from MS Press

    This article has been created in response to customer issues that have been brought up to Microsoft Support, forums, and other community connection points. The official location to submit errata for the Windows Server® 2008 PKI and Certificate Security book by Brian Komar is on the O'Reilly Web...
    on5 Feb 2013

  • Wiki Page: AD CS PKI Design

    Active Directory Certificate Services (AD CS) Public Key Infrastructure (PKI) Design Guide The Windows Server® product line provides a variety of secure applications and business scenarios based on the use of digital certificates. Before you can use digital certificates, however, you need to design...
    on15 Jan 2013

  • Wiki Page: How to Use a Self Signed Certificate in Exchange 2010

    We can use a self signed certificated for Exchange 2010 , Now will learn how to do it. Something which you need to know is , Using a self signed certificate you need to install the certificates on every machine you use and Mobile devices other wise you will end up in a certificate error in the...
    on9 Oct 2012
Page 1 of 2 (33 items) 12
Can't find it? Write it!

Post an Article