Skip to main content

Målet med vårt arbete är att skapa en transparent, kostnadseffektiv säkerhet som märks så lite som möjligt av användarna. Vi brukar kalla det "intelligent säkerhet på
lagom nivå".

Det senaste från oss

Require SSL on NDES admin site via PowerShell

Best Practices from Microsoft when deploying Network Device Enrollment Service (available here) states: “Always set up the administrator site with SSL-only configuration. (Disable http access to this site.)” This is to protect the sensitive One Time Passwords that are transmitted Continue reading


Configure AD CS to use a static DCOM port

Normally when you start a Windows CA server it allocates a random high port number for the service to listen on. When clients want to enroll certificates they find this dynamic port number by asking the CA Servers RPC Endpoint Continue reading


Can disabling Delta CRL on a CA cause problems?

Imagine that you are using both Base CRL and Delta CRL, but you want to stop using Delta CRL and only use Base CRL going forward. Could this cause any problems in revocation checking if you do not carefully plan Continue reading


Internet Explorer and revocation check failure

Internet Explorer normally warns you if the server you visit have any certificate issues. Some examples: The certificate has another Subject than the URL you used to access it: The certificate was issued by a CA that your computer do Continue reading


The option Enterprise unavailable during CA installation?

When installing a Active Directory Certification Authority (or CA server for short), the Setup Type option Enterprise might be greyed out: This is most likely because you are not running the installation with an account that local administrator on the Continue reading