PKI

21 Topics

Firewall Rules for Active Directory Certificate Services
First published on TECHNET on Jun 25, 2010 Below is a list of ports that need to be opened on Active Directory Certificate Services servers to enable HTTP and DCOM based enrollment The information was developed by Microsoft Consultant Services during one of our customer engagementsProtocolPortFromToActionCommentsKerberos464Certificate Enrollment Web Services Domain Controllers (DC)AllowSource Certificate Enrollment Web ServicesDestination: DCService: Kerberos (network port tcp/464)LDAP389Certificate Enrollment Web Services Domain Controllers (DC)AllowSource Certificate Enrollment Web ServicesDestination: DCService: LDAP (network port tcp/389)LDAP636Certificate Enrollment Web Services Domain Controllers (DC)AllowSource Certificate Enrollment Web ServicesDestination: DCService: LDAP (network port tcp/636)DCOM/RPCRandom port above port 1023· Certificate Enrollment Web Services· All XP clients requesting certs CAAllowPlease see for details on RPC/DCOM configuration: http://support.
NoMoePwds
Nov 09, 2023 Place Core Infrastructure and Security Blog
102KViews
3likes
2Comments
What is a strong key protection in Windows?
First published on TECHNET on Jun 16, 2009 Strong key protection is one of the most misunderstood features in Windows security.
NoMoePwds
Feb 18, 2023 Place Core Infrastructure and Security Blog
13KViews
1like
1Comment
Active Directory Certificate Services Features by SKU
First published on TECHNET on Sep 02, 2009 We’ve had many requests for what services and features are available in what Windows Server version and SKU.
NoMoePwds
Dec 14, 2022 Place Core Infrastructure and Security Blog
1.4KViews
0likes
1Comment
Introducing Certificate Template API
First published on TECHNET on Sep 25, 2009 WARNING: USE OF THE SAMPLE CODE PROVIDED IN THIS ARTICLE IS AT YOUR OWN RISK.
NoMoePwds
Dec 08, 2022 Place Core Infrastructure and Security Blog
3.1KViews
0likes
1Comment
Setting up NDES using a Group Managed Service Account (gMSA)
First published on TECHNET on Apr 26, 2015 Setting up NDES using a Group Managed Service Account (gMSA)Hallo everybody, this is Andy and Dagmar from Austrian Premier Field Engineering (PFE) describing how to implement NDES using a gMSA (instead of a normal domain user account).
NoMoePwds
Sep 23, 2022 Place Core Infrastructure and Security Blog
23KViews
0likes
1Comment
Certificate Enrollment Web Services Whitepaper
First published on TECHNET on Sep 14, 2009 The Windows Server 2008 R2 Certificate Enrollment Web Services Whitepaper has been posted to the download center: you can download it here.
NoMoePwds
Dec 15, 2021 Place Core Infrastructure and Security Blog
1.4KViews
0likes
1Comment
Suite B PKI in Windows Server 2008 and Windows Server 2008R2
First published on TECHNET on Apr 15, 2009 I'm happy to announce the availability of the Suite B PKI in Windows Server 2008 whitepaper.
NoMoePwds
Feb 21, 2020 Place Core Infrastructure and Security Blog
806Views
0likes
0Comments
PKI at TechEd 2009 in LA
First published on TECHNET on May 06, 2009 Attending TechEd 2009 next week? If you or your customers are around on Monday 5/11, I (objectively) recommend attendance at the “PKI in a Web Services World” breakout session from 2:45-4PM in room 408A.
NoMoePwds
Feb 21, 2020 Place Core Infrastructure and Security Blog
649Views
0likes
0Comments
Populate Subject Name for Offline Templates on Renew
First published on TECHNET on Aug 21, 2009 Offline templates are certificate templates that require the subject name to be part of the certificate request.
NoMoePwds
Feb 21, 2020 Place Core Infrastructure and Security Blog
2.3KViews
0likes
0Comments
Automated CA installs using VB script on Windows Server 2008 and 2008R2 [UPDATED]
First published on TECHNET on Sep 18, 2009 Starting with Windows Server 2008 the CA product team introduced a set of COM objects that can be used to control the installation of CAs.
NoMoePwds
Feb 21, 2020 Place Core Infrastructure and Security Blog
1.4KViews
0likes
0Comments