FortiGate Certificate Import Errors
FortiGate Certificate KB ID 0001791 Problem A colleague messaged me last week because he could not import a certificate on a FortiGate (that had been exported from a Cisco ASA). He was seeing this error; Incorrect certificate file format for CA/LOCAL/CRL/REMOTE cert. FortiGate Certificate Problems A brief Google led me to ask “Is the FortGate licensed or on a Free/Trial license?” As that can produce this error...
Azure VPN: Point To Site VPN (Remote Access)
KB ID 0001692 Problem Given my background I’m usually more comfortable connecting to Azure with a Route Based VPN from a hardware device, like a Cisco ASA. I got an email this afternoon, a client had a server in a private cloud and a server in Azure, they needed to transfer files from the Azure server to the server in the private cloud. Now on further investigation this client had a Cisco vASA so a VPN was the best option for...
Exchange Certificate Import: ‘Certificate Already Exists’
KB ID 0001550 Problem When attempting to import a certificate into Exchange last week, this happened; A special Rpc error occurs on the server {Server-Name}: Cannot import certificate. A certificate with the thumbprint {Thumbprint} already exists. Solution This is a symptom of another problem, the certificate WAS previously imported, but it can’t be seen in the Exchange Admin Console. (The reason in that case was the certificate...
Citrix NetScaler – ‘Certificate is not a server certificate’
KB ID 0001191 Problem While attempting to bind a certificate to a Virtual Server on my NetScaler this happened; Error Certificate is not a server certificate Solution Before you proceed, delete the problem certificate to avoid confusion! I had generated this certificate with Microsoft Certificate Services, and I had made a wildcard certificate like so; Certificate Services – Create a ‘Wildcard Certificate’ Remember if you use the...
Install and Configure Remote Desktop Services (Web Access)
KB ID 0000104 Problem Originally we had TS Web in 2003, and while I had a little play with it, it basically just gave you RDP over web, which would have been good if it ran over HTTP or HTTPS, but it didn’t. Also, as anyone who has ever done a complex Google search for “/tsweb” will testify, left a nice big security hole in to your servers. With the release of Server 2008 we got TSWeb 2008, this was a whole different...