MS2065

Verifying The SSL Certificate Expiration with a tool

First published on TECHNET on Feb 21, 2011 An active member of our community developed a very handy tool to verify – or let’s actually say monitor – the validity of SSL server certificates. After downloading and extracting the the ZIP-file the tool is quite self explanatory. Press CTRL+A or click Add Server Entry on […]

Verifying The SSL Certificate Expiration with a tool Continue Reading

SHA2 and Windows

First published on TECHNET on Sep 30, 2010 UPDATE (2/8): Based on some recent questions, additional information has been posted about SHA2 and Windows. Introduction We’ve recently received a couple of requests from customers around the functionality of SHA-256 when running on Windows XP and 2003. This has been more important recently, as NIST has

SHA2 and Windows Continue Reading

Powershell CRL Copy

First published on TECHNET on May 12, 2010 This script writes a Certification Authority’s Certificate Revocation List to HTTP based CRL Distribution Points via a UNC path. It checks to make sure that the copy was successful and that the CDPs have not and are not about to expire. Alerts/status messages are sent via SMTP

Powershell CRL Copy Continue Reading

Deployment of the new Federal Common Policy CA Root Certificate

First published on TECHNET on Mar 13, 2011 Background On December 1, 2010 the Federal PKI Management Authority (FPKIMA), in compliance with NIST guidance , created a new SHA-256 Federal Common Policy root certification authority. Windows Update will include the new Federal Common Policy Root CA (FCPCA) certificate as part of the Microsoft Root Certificate

Deployment of the new Federal Common Policy CA Root Certificate Continue Reading

Understanding Key Archival

First published on TECHNET on Aug 07, 2009 It came to my attention that there is little understanding regarding the relationship between archived private keys and Key Recovery Agent (KRA) certificates. With this blog post I would like to clarify what you can expect from the recovery mechanism and why. Relationship between archived private keys

Understanding Key Archival Continue Reading

How to create a web server SSL certificate manually

First published on TECHNET on Aug 05, 2009 The Internet Information Server (IIS) and Microsoft Internet Security and Acceleration (ISA) provide wizards in the administration user interface to request and install SSL certificates. With this blog post I want to explain how to request a SSL server certificate manually. The manual steps are required if

How to create a web server SSL certificate manually Continue Reading