Sign in
xdot509
A Microsoft Premier Field Engineer's blog on PKI
Options
About
RSS for posts
Atom
RSS for comments
OK
Search Blogs
Tags
Enrollment
ME
Revocation
Tools
Training
Upgrade
Windows 8
Windows Phone
Windows Server 2012
Archive
Archives
May 2013
(2)
April 2013
(4)
March 2013
(8)
February 2013
(3)
December 2012
(2)
November 2012
(5)
October 2012
(7)
December 2011
(1)
November 2011
(4)
July 2011
(2)
TechNet Blogs
>
xdot509
Subscribe via RSS
Sort by:
Most Recent
|
Most Views
|
Most Comments
Excerpt View
|
Full Post View
xdot509
Operating a Windows PKI: Removing Expired Certificates from the CA Database
Posted
10 days ago
by
chdelay
0
Comments
Today, I am going to discuss removing expired certificates from the CA database. Every time a CA issues a certificate it also stores a copy of the issued certificate in the CA database. Overtime the certificates that the CA issues expire. ...
xdot509
Operating a Windows PKI
Posted
10 days ago
by
chdelay
0
Comments
In my customer engagements I get a lot of questions around what tasks an organization should be doing in terms of operation and maintenance for their PKI. So, in this blog series I am going to cover the operational and maintenance aspects of a PKI...
xdot509
Fun with Windows Phone 8 and NFC
Posted
1 month ago
by
chdelay
0
Comments
I currently have a Windows Phone 8 device, specifically the HTC 8X. One the features in this phone is Near Field Communications (NFC). I had heard a lot about NFC so I wanted to try it out. So, I bought some NFC tags from Amazon. ...
xdot509
Upgrading your PKI to Windows Server 2012 Part III (Video)
Posted
1 month ago
by
chdelay
0
Comments
This video is Part 3 in a 4 part video series on the steps required to upgrade an existing PKI from Windows Server 2003 to Windows Server 2012. Although the steps demonstrated cover upgrading Windows Server 2003, the same steps could be used to upgrade...
xdot509
Upgrading your PKI to Windows Server 2012 Part II (Video)
Posted
1 month ago
by
chdelay
0
Comments
This video is Part 2 in a 4 part video series on the steps required to upgrade an existing PKI from Windows Server 2003 to Windows Server 2012. Although the steps demonstrated cover upgrading Windows Server 2003, the same steps could be used to upgrade...
xdot509
Upgrading your PKI to Windows Server 2012 Part I (Video)
Posted
1 month ago
by
chdelay
0
Comments
This video is Part 1 in a 4 part video series on the steps required to upgrade an existing PKI from Windows Server 2003 to Windows Server 2012. Although the steps demonstrated cover upgrading Windows Server 2003, the same steps could be used to upgrade...
xdot509
New Active Directory Certificate Services (PKI) Features in Windows Server 2012
Posted
1 month ago
by
chdelay
0
Comments
New Features Below are a list of several new features available in Active Directory Certificate Services in Windows Server 2012. Additional information on new features in ADCS can be found here: http://technet.microsoft.com/en-us/library/hh831373...
xdot509
Installing a Two Tier PKI Hierarchy in Windows Server 2012 Wrap Up
Posted
1 month ago
by
chdelay
0
Comments
After nine blog postings I have decided to wrap up the Installing a Two Tier PKI Hierarchy in Windows Server 2012 Blog Series. Stay tuned for upcoming content. I am going to add blog postings focusing on enrollment, new features, and maybe...
xdot509
Upcoming Public Key Infrastructure (PKI) Talks
Posted
2 months ago
by
chdelay
0
Comments
I am looking for PKI Speaking Engagements. If you are a member of a user group or a security organization such as ISSA or ISACA, please contact me if you need someone to speak on PKI. I am based out of Charlotte. However, I will be traveling to the following...
xdot509
Installing a Two Tier PKI Hierarchy in Windows Server 2012: Part IX, Configuring High Availability for the HTTP AIA and CDP Repositories
Posted
2 months ago
by
chdelay
0
Comments
AIA and CDP Repositories are very important for certificate validation. The Authority Information Access or AIA repository host CA Certificates. This location is “stamped” in the Authority Information Access extension of issued certificates...
xdot509
Twitter app now available for Windows 8
Posted
2 months ago
by
chdelay
0
Comments
Twitter app now available for Windows 8. Download here: http://apps.microsoft.com/windows/en-US/app/twitter/8289549f-9bae-4d44-9a5c-63d9c3a79f35 -Chris https://twitter.com/chdelay
xdot509
Installing a Two Tier PKI Hierarchy in Windows Server 2012: Part VIII, PKI Security
Posted
2 months ago
by
chdelay
0
Comments
So, now that we have walked through configuring our Windows 2012 based PKI, let’s discuss securing this new environment. Security Considerations for a Root CA So, we setup a Root CA. A best practice for a PKI is to have the Root CA Offline...
xdot509
Installing a Two Tier PKI Hierarchy in Windows Server 2012: Part VII, Enabling SSL on the Web Enrollment Website
Posted
2 months ago
by
chdelay
0
Comments
In this installment of this blog series, I will cover enabling SSL on the Web Enrollment website. If you are new to Active Directory Certificate Services this blog will also give you an idea of what’s involved in issuing certificates. Duplicating...
xdot509
Installing a Two Tier PKI Hierarchy in Windows Server 2012: Part VI, Post Configuration of an Enterprise Subordinate Certification Authority
Posted
2 months ago
by
chdelay
0
Comments
In the last episode of this blog series I installed an Enterprise Subordinate CA. In this episode I am going to perform post configuration of this CA. So, let’s first sum up where I am with my setup. I have installed my Root and Subordinate CA...
xdot509
Installing a Two Tier PKI Hierarchy in Windows Server 2012: Part V, Installing an Enterprise Subordinate Certification Authority and Web Enrollment with PowerShell
Posted
2 months ago
by
chdelay
0
Comments
In the previous blog postings for this series I covered installing the Root Certification Authority, configuring the Root Certification Authority, and publishing the Root CA Certificate and CRL to Active Directory. In this installment I am going...
xdot509
Installing a Two Tier PKI Hierarchy in Windows Server 2012: Part IV, Publishing the Root CA Certificate and CRL to Active Directory
Posted
2 months ago
by
chdelay
0
Comments
In parts I-III of this series I covered installing a Root Certification Authority as well as some post configuration steps for the Root CA. In this blog posting I am going to cover Root CA Certificate and Certificate Revocation List (CRL) Publishing...
xdot509
BLINK by Microsoft Research for Windows Phone 8
Posted
2 months ago
by
chdelay
0
Comments
One issue I have had with the Cameras on Windows Phone and other Smart Phones is getting the perfect picture. This is especially true when trying to take a picture of a person that is moving. For example, I will try to take a picture of my...
xdot509
PKI Training: Cryptography Basics Part 2
Posted
5 months ago
by
chdelay
0
Comments
I started working on some PKI Training videos. The first training session is on Cryptography Basics. It is one presentation split into two parts. The two videos are a primer for some basic cryptography concepts such as symmetric cryptography, asymmetric...
xdot509
PKI Training: Cryptography Basics Part 1
Posted
5 months ago
by
chdelay
0
Comments
I started working on some PKI Training videos. The first training session is on Cryptography Basics. It is one presentation split into two parts. The two videos are a primer for some basic cryptography concepts such as symmetric cryptography, asymmetric...
xdot509
Data Sense
Posted
5 months ago
by
chdelay
2
Comments
I normally post blog posts about PKI and not phones. However, I recently received my HTC 8X , which I love. On my previous phones, I had always wanted to track data usage by application. While there may have been apps that already provide this functionality...
xdot509
PKI Design Considerations: Certificate Revocation and CRL Publishing Strategies
Posted
5 months ago
by
chdelay
0
Comments
In this blog posting I want to talk about revocation, in particular CRLs. I will cover some strategies for designing a revocation solution. This includes determining where to host CDP Repositories and how best to configure CRL publishing. Revocation...
xdot509
HTC 8X
Posted
5 months ago
by
chdelay
0
Comments
I received my HTC 8X this week. It is such a beautiful phone. If you have time to stop by an AT&T or Verizon store, you should definitely take time to check it out.
xdot509
Windows Server 2008 R2: Managing and Supporting Active Directory Services workshop in Chevy Chase, MD
Posted
6 months ago
by
chdelay
0
Comments
I will be teaching the "Windows Server 2008 R2: Managing and Supporting Active Directory Services" workshop in Chevy Chase, MD on February 5th - 7th. If you have a Premier contract (Microsoft Support), contact your TAM to reserve your seat! -Chris
xdot509
Windows Server 2012 Enterprise CA, XP Compatibility Link
Posted
6 months ago
by
chdelay
0
Comments
If you deploy an Enterprise CA on Windows Server 2012 you will have to disable a security setting to enable Windows XP clients to enroll for certificates. See: http://social.technet.microsoft.com/wiki/contents/articles/6289.certification-authority-authentication...
xdot509
Installing a Two Tier PKI Hierarchy in Windows Server 2012: Part III, Post Configuration of Root Certification Authority
Posted
6 months ago
by
chdelay
0
Comments
Introduction I wanted to follow up on the Installing a Two Tier PKI Hierarchy in Windows Server 2012: Part I, Installing a Root Certification Authority with PowerShell and Installing a Two Tier PKI Hierarchy in Windows Server 2012: Part II, Installing...
Page 1 of 2 (38 items)
1
2