Windows Server 2012 ‘Direct Access with Windows 8’
KB ID 0000842 Problem In the following procedure I’m using Window Server 2012, and Windows 8 Enterprise, I am NOT configuring for Windows 7 so I don’t need to worry about PKI and certificates. (Other than the one the direct access server uses for https identification). I’m not adding in any Application or Infrastructure servers, this is just a basic run through on setting up Direct Access to get you up and running....
Windows Server – Secure RDP Access with Certificates
KB ID 0000944 Problem This ensures that traffic that is sent over an RDP connection to a server is protected by TLS/SSL Encryption. IT DOES NOT stop clients connecting to an RDP server if they do not have a trusted certificate. If you need that level of security, that should already be done by 802.1x. Solution Create an RDP Certificate Template 1. On the domain CA Launch the Certification Authority Management Console > Certificates...
Event ID 29
KB ID 0001032 Problem Seen on a Microsoft Certificate Services server running NDES. Log Name: Application Source: Microsoft-Windows-NetworkDeviceEnrollmentService Date: 04/02/2015 11:22:26 Event ID: 29 Task Category: None Level: Error Keywords: User: PETENETLIVESVC_NDES Computer: PNLPKI00v.petenetlive.com Description: The password in the certificate request cannot be verified. It may have been used already. Obtain a new password to...
Microsoft Certificate Services Configuring OCSP
KB ID 0001084 Problem I seem to have done a lot of PKI the last 18 months. This week I needed an OCSP server deploying for the CA server on my test bench so I took the time to document it for future use. One of the most overlooked parts of a PKI deployment, is how to cope with ‘revoking’ certificates. Traditionally this has been done with a CRL, but there is a downside to CRL’s. Network devices tend to cache them,...
Internet Explorer – ‘There is a problem with this website’s security certificate’
KB ID 0000994 Problem While browsing to a website with an https:// address you may come across the following error; There is a problem with this website’s security certificate. The security certificate presented by this website was not issued by a trusted certificate authority and/or The security certificate presented by this website was issued for a different website address. Security certificate problems may indicate an...