Citrix NetScaler – ‘Certificate is not a server certificate’
KB ID 0001191 Problem While attempting to bind a certificate to a Virtual Server on my NetScaler this happened; Error Certificate is not a server certificate Solution Before you proceed, delete the problem certificate to avoid confusion! I had generated this certificate with Microsoft Certificate Services, and I had made a wildcard certificate like so; Certificate Services – Create a ‘Wildcard Certificate’ Remember if you use the...
NetScaler – SSL Virtual Server State: Down Effective State: Down
KB ID 0001190 Problem When trying to setup SSL Offloading on a NetScaler Virtual Server. I was unable to get the State and Effective State to ‘go green’. Solution If you hit the ‘down arrow’ to the left it will give you a little more information, it also says ‘SSL feature disabled’. Log directly into the appliance and issue the following command; enable feature SSL Hit the ‘refresh’...
Firefox Error – SSL_ERROR_WEAK_SERVER_EPHEMERAL_DH_KEY
KB ID 0001189 Problem Firefox is what I use when Opera does not work, so when I tried to connect to some management servers that did not support Opera this happened; Secure Connection Failed An error occurred during a connection to {FQDN). SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange handshake message. (Error code: SSL_ERROR_WEAK_SERVER_EPHEMERAL_DH_KEY) Solution Navigate to ‘about:config’...
Citrix NetScaler – Simple HTTP Site Load Balancing
KB ID 0001188 Problem Here is the simplest load balancing scenario I can think of, I’ve got two web servers, (on http port 80) and I’m presenting them though my NetScaler as an HTTP (Virtual Server). Solution First we add the ‘back-end’ servers. Connect to the management IP of your NetScaler and login > Configuration > Traffic Management > Load Balancing > Servers > Add. Define a name for the...
NetScaler – Locate the Host ID
KB ID 0001187 Problem To apply a license to your NetScaler you need the supply the Host ID to the licensing portal. A quick internet search yielded the commands, but the were not working? Solution Note: If this is a new installation, the username and password will both be set to nsroot. Whatever I was reading, didn’t tell me I needed to drop to shell mode! shell lmutil lmhostid As you can see this ones 0050569d5a96, (which I...
Windows – Suppress the ‘First Run’ Welcome to Windows Animation
KB ID 0001186 Problem I don’t like ‘first-run’ dialogs, Internet Explorer is annoying enough, Now Windows and Office insist on playing me a film clip when they start for the first time. I’m a busy guy I have things to do, stop asking me questions and making recommendations! It takes this long to create a user profile? I don’t think so. Solution You can do this by local policy on the machine, but domain...
Cisco – Cannot Connect to the ASA FirePOWER Module
KB ID 0001182 Problem There’s an alarming amount of people who have contacted me about this error; Cannot connect the the ASA FirePOWER module. Cannot connect the the ASA FirePOWER module.. Check that it is correctly configured and on the network. It’s also possible that the management address is being translated by NAT. Please verify the IP address/Hostname and port. Note: If you have just updated or re-imaged the SFR...
Microsoft – NDES Site Shows ‘HTTP Error 500.0 – Internal Server Error’
KB ID 0001181 Problem I was doing some testing for a client this week, a while ago I had deployed a three tier PKI solution for them, and as part of the rollout we deployed NDES for their network devices, (they were going to use certificates to secure site to site VPNs). The client was concerned, and wanted the auto renewal process testing. This could not be done on the live system. So myself and a colleague went to the test bench, I...
Exchange – ‘Not all the required authentication methods were found’
KB ID 0001180 Problem I had to visit a client who had recently gone through an Exchange migration, now his external mail clients were having a nightmare staying connected to Outlook Anywhere. I ran the Exchange connectivity tester and got this; Additional details Not all the required authentication methods were found Methods Found: Basic Methods Required: NTLM Solution Looks like an open and shut case, someone forgot to enable...
Cisco Add FirePOWER Module to FirePOWER Management Center
KB ID 0001178 Problem If you only have one FirePOWER service module you can now manage it from the ASDM; ASA 5505-X / 5508-X Setup FirePOWER Services (for ASDM) But if you have got more than one, and you can manage them centrally with the FirePOWER Management Center, (formally SourceFIRE Defence Center). WARNING: If you are going to use FMC DON’T register your licences in the ASDM, they all need to be registered in the FMC. ...