The Web Site for the CA Must be Configured to use HTTPS
Jan13

The Web Site for the CA Must be Configured to use HTTPS

Posted By on Jan 13, 2021

KB ID 0000838  Problem When attempting to contact a server running the Certification Authority Web Enrolment role, you may see the following error. In order to complete certificate enrolment, the Web site for the CA must be configured to use HTTPS authentication Solution The correct fix is to set the web server (IIS) to serve the certificate website securely using https, though you can just set Internet explorer to ‘work’...

Read More
Cisco ASA – Disable SSLv3 (Force TLSv1.0) – Mitigate POODLE
Nov17

Cisco ASA – Disable SSLv3 (Force TLSv1.0) – Mitigate POODLE

Posted By on Nov 17, 2015

KB ID 0001052 Problem By default the Cisco ASA will allow connection via SSLv3. The POODLE exploit works by forcing SSL to fall back to SSLv3 and then decrypting that communication. However you are still not completely protected as per this Threat Validation, so the ASA platform can still be attacked via TLSv1.0. Note: At time of writing TLSv1.2 is not supported, but it is on the road-map for version 9.3(2). So this procedure will not...

Read More