Core Infrastructure and Security Blog
Copied!
Home
Options
428
Mike Kammer on 12-10-2019 06:21 AM
2,783
Paul Bergson on 12-04-2019 02:12 PM
2,906
wallenc on 11-26-2019 01:08 PM
1,826
Zoheb Shaikh on 11-19-2019 06:22 AM
1,425
Stanislav Belov on 11-12-2019 11:00 PM
2,344
SteveMat on 11-11-2019 02:27 PM
10.9K
Alan La Pietra on 11-04-2019 06:26 AM
459
Sean Leonard on 11-01-2019 03:23 PM
493
Joe_Zinn on 11-01-2019 03:22 PM
589
Joe_Zinn on 11-01-2019 03:22 PM
502
Joe_Zinn on 11-01-2019 03:22 PM
402
Sean Leonard on 11-01-2019 03:21 PM
393
Joe_Zinn on 11-01-2019 03:21 PM
372
Joe_Zinn on 11-01-2019 03:21 PM
394
Joe_Zinn on 11-01-2019 03:20 PM
397
Joe_Zinn on 11-01-2019 03:20 PM
585
Joe_Zinn on 11-01-2019 03:20 PM
807
Joe_Zinn on 11-01-2019 03:20 PM
1,471
Joe_Zinn on 11-01-2019 03:20 PM
1,932
Joe_Zinn on 11-01-2019 03:20 PM
388
AMARSIGLIA on 11-01-2019 03:20 PM
405
Joe_Zinn on 11-01-2019 03:20 PM
374
ktackett on 11-01-2019 03:17 PM
353
AMARSIGLIA on 11-01-2019 03:12 PM
363
ktackett on 11-01-2019 03:12 PM
369
AMARSIGLIA on 11-01-2019 03:09 PM
347
ktackett on 11-01-2019 03:08 PM
362
ktackett on 11-01-2019 03:08 PM
359
ktackett on 11-01-2019 03:07 PM
412
ktackett on 11-01-2019 03:05 PM
Latest Comments
If there is a requirement to secure the binding with a certificate, either internal CA or third party CA, and the domain ends in .local, is it possible to obtain a certificate from a third party CA for a upn suffix that is available externally and use this instead to bind securely? Deploying an inte...
0 Likes
For those with Macs, it looks like they do not support CBT (Channel Binding Tokens) so it won't be possible to set LdapEnforceChannelBinding to 2, but it does work with it set to 1 (Compatibility Mode). I'm guessing most people will have to stay in that mode anyway, due to an assortment of 3rd party...
1 Likes
Thank you, fascinating read and very informative! I do hope to build up my Windows troubleshooting skills higher and higher. Whenever I have to reinstall Windows to get an update applied I feel defeated :) Is there a good source to learn about Windows Update internals and troubleshooting things arou...
0 Likes
We also use a wildcard cert for our environment (Win 2016 Server RDS). We have a GW, CB, and 3 SH servers. The DNS A Record we use I'm assuming is our farm name (one name pointed to all the SH's IP addresses). So when using MSTSC.EXE on the outside, we get prompted about the certificate. The obvious...
0 Likes