Now it’s time for the main event, the upgrade itself. Which as you’ll see is actually very simple. The key to this is ensuring your environment is ready, so please make sure the relevant information finding has been done and you know exactly what’s going to break or potentially break before continuing. (Which shouldn’t be […]
No Comments. Continue Reading...Above you can see the environment we will be using. I’ve replicated a fairly standard PKI enterprise environment. This includes: An Offline Root CA – (Cert Validity 50 Years) Two Online Intermediate CA’s: 1x Enterprise / AD Certificate Handling CA (MRPKI001AD) 1x SSL / Application Certificate Handing CA (MRPKI002SSL) I won’t cover installing or […]
No Comments. Continue Reading...After a fairly lengthy break from writing these guides, I’m back with a fairly hot topic at the moment for a lot of organisations. The Migration from SHA1 PKI to SHA2 (Or SHA256 as you may have heard) All the SSL Certificates you can buy now a days (Symantec/go daddy etc.) no longer use SHA1. […]
No Comments. Continue Reading...With the End of life day looming for Server 2003 (July 14th 2015) for those of you haven’t been living under a rock…. It’s all the rage to migrate away from your trusty 2003 AD environment to a more modern 2008 R2 or 2012 R2 environment. In fact, it’s all I’ve really been working on […]
No Comments. Continue Reading...Had another interesting issue with the UAG’s today. Once again they like to test my patience. This time they decided they would no longer activate, and after searching about I could see nothing on this topic so hopefully this helps others. You may get one of the following errors: “Failed to add TMG access […]
No Comments. Continue Reading...As I’m sure most IT professionals / those working with AD realise problematic DC’s can be a royal pain the backside, especially once you’ve located the DC and need to get it back in to a working state. There are many tools you can use for finding out information on when it stopped replicating, […]
No Comments. Continue Reading...How many times have you been in the situation where you find that the Windows Server or Workstation has its security relationship with the domain failed. The usual error you might receive is: “The trust relationship between the workstation and the primary domain failed”. Now in the past (not so much of a problem […]
No Comments. Continue Reading...Welcome to the second post in this series of basics/introductory blogs, brings us to something we use day in day out. Our friend DNS…. What is DNS? DNS (Domain Name Service) is the service used to translate friendly names (michaelriccioni.com) into computer friendly names (an IP address). How Does It Work? Think of DNS […]
No Comments. Continue Reading...As part of a series of introductory blogs, I’m kicking off with the basics behind Active Directory Trusts. What is an Active Directory Trust? In order to share resources between two domains, there must be a trust or trusts connecting the two domains. It is important to note that trusts do not provide access […]
No Comments. Continue Reading...Another interesting issue I ran in to a few weeks ago was issues when trying to create a new GPO via AGPM which included wireless settings. Upon trying to check the policy in I would find it would error and then the GPO would be removed. Not exactly what I need. Further investigation show due […]
No Comments. Continue Reading...