Event ID 53 – ‘The public key does not meet the minimum size required by the specified certificate template’
KB ID 0000967 Problem I’ve been doing a lot of PKI work over the last few days, testing device enrollment and NDES etc, and came across this problem being logged on my issuing/subordinate CA server; Log Name: Application Source: Microsoft-Windows-CertificationAuthority Event ID: 53 Task Category: None Level: Warning Keywords: User: SYSTEM Description: Active Directory Certificate Services denied request 35 because The public...
Ubuntu – Managing Cisco Devices via Serial / Rollover Cable
KB ID 0000400 Problem A while back I ran though “Managing Cisco ASA devices via the ASDM with Ubuntu”, I prefer to work at command line, with a new firewall my only choice is via the console port, In a windows environment I can fire up Hyperterminal and I’m away. With Linux there a couple of things to do first. Solution Step 1 (Get the Serial / RS232 / COM Port working) As pictured above, this is being done on my...
Draytek Vigor Router Port Forwarding
KB ID 0000425 Problem This procedure was carried out on a Draytek Vigor 2800 Router, for this I needed to forward RDP (That’s on TCP Port 3389). Warning: If you need to forward any of the following ports 23 (Telnet), 80 (HTTP) , 443 HTTPS/SSL), 21 (FTP), or 22 (SSH). The Draytek has these reserved for remote management. You will need to change the port number (system Maintenance > Management > Management Port Setup)....
BT Business ADSL – Configure a 2Wire Router to Allocate a Static (Public) IP Address
KB ID 0000760 Problem I know BT are now shipping the BT Business Hub, to their business ADSL clients, but there’s still a few 2Wire routers out there in the wild. Essentially if you have a range of public IP addresses, this is how to allocate one of the public IP addresses to one of your devices. In my case its a Cisco ASA firewall that I need to have a public IP. Solution Firstly I’m going to assume the router is working and...
NDES – Fails to Issue Certificates (Signature Algorithm)
KB ID 0001021 Problem I was trying to enroll some ASA firewalls to NDES to get some certificates. Each time the process failed with the following error. % Error in receiving Certificate Authority certificate: status = FAIL, cert length = 0 That’s a pretty generic error, and does not give me a lot to go on. So I thought I would try from another network device, (a Cisco Catalyst switch). It’s a little easier to...