Windows Certificate Services – Setup a CRL
May17

Windows Certificate Services – Setup a CRL

Posted By on May 17, 2025

Setup a CRL KB ID 0000957 Problem One of the often-overlooked tasks in a Public Key Infrastructure (PKI) deployment is configuring your Certificate Services Certificate Revocation List (CRL). For smaller deployments with only one server, you don’t need to worry about complex design considerations (though a CRL doesn’t have to be hosted on a Certificate Services server). In my test environment, I have only one PKI server,...

Read More
Server 2025 Network Profile Wrong After Reboot
May14

Server 2025 Network Profile Wrong After Reboot

Posted By on May 14, 2025

2025 Network Profile KB ID 0001918 Problem If you have a domain controller running Windows server 2025 you may find that after a reboot the network profile changes from Domain to Public. This can cause a myriad of problems. 2025 Network Profile Group Policy Failures Symptoms: Group Policy Objects (GPOs) may fail to apply or update. Reason: The system doesn’t recognize it’s part of a domain, so it won’t retrieve policies from the...

Read More
Cisco ASA Domain Authentication and Trust (Allowing)
May08

Cisco ASA Domain Authentication and Trust (Allowing)

Posted By on May 8, 2025

ASA Domain Authentication KB ID 0000973  Problem I cringed this morning when I was asked about this, last time I had to get a client to authenticate to a domain through a firewall, it was ‘entertaining’. The problem is Windows loves to use RPC, which likes to use random ports, so to make it work you either had to open TCP ports 49152 and 65535 (Yes I’m Serious). Or you had to registry hack all your domain controllers...

Read More
Windows Server 2025 Trust Relationship Failures Post-Upgrade
May06

Windows Server 2025 Trust Relationship Failures Post-Upgrade

Posted By on May 6, 2025

2025 Trust Relationship KB ID 0001917 Problem Following a full upgrade of all domain controllers (DCs) to Windows Server 2025, organisations may experience trust relationship failures between domain-joined workstations and the domain. This issue predominantly affects clients running Windows 10/11 versions up to 23H2. Notably, environments retaining at least one older DC do not encounter this problem. Symptoms Users unable to log in to...

Read More
Windows – Firewall Group Policy
May01

Windows – Firewall Group Policy

Posted By on May 1, 2025

  Firewall Group Policy KB ID 0000979  Problem For everyone who simply does not disable the Windows firewall, then you need to be able to manage what ports are open on your machines. The simplest way to do this is via firewall group policy. This week I had to open TCP port 9503 on the local firewall of my McAfee Move Offload Servers. Below I will open that port on all my machines, but in production I will only apply the GPO to...

Read More
Windows Displaying a Logon Notice (legal notices)
Apr29

Windows Displaying a Logon Notice (legal notices)

Posted By on Apr 29, 2025

 Logon Notice KB ID 0000328 Problem It’s been a while but when I was asked my notes were seriously out of date .Should you with to enable this feature then do the following. Solution : Logon Notice Logon Notice Option 1 – via Domain Policy 1. On a domain controller, Start > administrative tools > Group Policy Editor > Either edit an existing policy or create a new one (Remember its a computer policy you need to...

Read More