Windows Server – Secure RDP Access with Certificates
KB ID 0000944 Problem This ensures that traffic that is sent over an RDP connection to a server is protected by TLS/SSL Encryption. IT DOES NOT stop clients connecting to an RDP server if they do not have a trusted certificate. If you need that level of security, that should already be done by 802.1x. Solution Create an RDP Certificate Template 1. On the domain CA Launch the Certification Authority Management Console > Certificates...
PowerShell Web Access
KB ID 0001036 Problem One of my goals for this year is to become more proficient with PowerShell. During my studies I came across PowerShell Web access and thought it was so cool, I’d have a play with it. What is PowerShell Web Access? It’s a web service that runs on a Server 2012 IIS web server. It lets you remote connect to that host (via https) and then launch a PowerShell secure connection to any machine in your...
Internet Explorer “Only Secure Content is Displayed”
KB ID 0000502 Problem I was trying to do some online VMware training today, and this was really annoying me, every link I clicked up it came. Popup: Only secure content is displayed – What’s the risk? – Show all content Eventually after clicking show all content (A LOT) I could take no more, and had to disable it. Solution Warning: There’s a sound reason for this, over https all traffic is encrypted with...
Cannot Logon to HP System Management Homepage
KB ID 0000580 Problem This used to quite common when attempting to contact the HP Management Homepage, (or the local insight manager page) you can no longer get access. ERROR: Username and password do not match Solution With much older versions of the Systems Management Homepage (before it used domain user names and passwords) you could simply copy over the CPQHMMD.DLL file from a server you knew the password for, and then you could...
Securing Cisco SSL VPN’s with Certificates
KB ID 0000335 Problem It’s been a while since I wrote a walk though on the Cisco AnyConnect/SSL VPN solution, and usually I secure these with Active Directory or simply using the local user database on the firewall. But what if you wanted to use certificates instead? Perhaps your users are too “technically challenged” to remember their passwords. Or you want to enable two factor authentication with...