Juniper SRX Cluster (Active / Standby)
SRX Cluster KB ID 0000990 Problem I’ve had very little exposure to JUNOS and Juniper equipment, and later in the year I have to deploy some for a client in a failover cluster. So I had a good look round on the Internet, and found loads of good blog posts and KB articles like this one. The problem is they are all geared to setting up a cluster, they ASSUME you then know about security zones, how to add default routes, and setup...
Software is Preventing Firefox From Safely Connecting to this Site
KB ID 0001727 Problem I was setting up some HTTPS/SSL inspection this week and while testing it, I ran into this problem; Firefox Certificate Settings So the machine I’m using DOES trust the CA that issued that certificate, (it’s a FortiGate firewall) But the BROWSER does not. (Firefox maintains its own list of certificates, and more importantly which CA certificates it will trust). Essentially the browser is trying to...
ADFS: Deploy Active Directory Federation Services
KB ID 0001140 Problem The actual configuration of ADFS depends largely on what you intend to do with it. Here I’m using it to broker connections from my Microsoft Web Application Proxy. This article is just to ‘join the dots’ and covers just the installation of the role itself. Solution Before you Start: Make sure you have a certificate ready to use for ADFS. I typically use a wildcard cert for this, it’s...
Firefox: Cannot Open vCenter Web Client
KB ID 0001482 Problem I wonder how many hours Ive lost trying to get browsers to connect to things, and the browser has not been happy? This week I needed to connect to a vCenter (6.5) web console with Firefox and was greeted with this. Your connection is not secure The owner of {site} has configured their web site improperly. To protect information being stolen, Firefox has not connected to this website. Error Code:...
Can A Domain Trust Another Domain With The Same ‘Root Domain’ Name?
KB ID 0001288 Problem About a month ago I was with a client to do some investigation/consultancy, they were a large company with their head office in the UK and a number of other offices around the world. They had a number of domains and sub domains and wanted to consolidate them all into a new domain. Well that’s all OK, but the UK company has been purchased by a large American company, who were putting a lot of pressure on...