Browse by Tags

• Forefront
• WCF

• Performing Mutual Authentication via IPSec in a MOM 2005 workgroup environment

  This walkthrough will concentrate on mitigating some of the security limitations of MOM 2005 when managing machines, which are part of a workgroup environment, or to be more specific which are not part of an Active Directory Forest. We will look at how to utilize PKI infrastructure in conjunction with IPSec capabilities of the Windows platform to perform mutual authentication based on X509 certificates. Read More... Posted Wednesday, April 30, 2008 4:36 PM by alextch | 1 Comments Filed under: PKI, Forefront

• Configuring SCOM 2007 to perform mutual authentication with non-domain joined machines using X509 certificates

  This walk-through outlines the steps required to configure SCOM 2007 to perform mutual authentication with non-domain joined machines using X509 certificates. Such configuration provides high level of security in the scenario of having to manage non-domain joined machines using SCOM 2007 Read More... Posted Monday, April 21, 2008 9:47 AM by alextch | 2 Comments Filed under: PKI

• Certificate auto-enrollment configuration and certificate template version

  For the most part configuring certificate auto-enrollment is a fairly straight forward process, and is well documented (see links below). http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/security/autoenro.mspx http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/security/ws03crtm.mspx Nevertheless, there is one aspect that may not be quite intuitive and it has to do with the certificate templates versions. As you probably are aware Microsoft Enterprise CA supports two types of templates: V1 and V2. V2 templates allow customization and therefore are preferred, but require CA to be running on Windows 2003 Server Enterprise Edition. So where is the non-intuitive part? Well, the auto-enrollment configuration process will differ depending on the type of the template the certificate is based on. Read More... Posted Tuesday, July 03, 2007 5:35 PM by alextch | 1 Comments Filed under: PKI

• Configuring WCF Service for authentication via x509 Certificates

  This posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subject to the terms specified at http://www.microsoft.com/info/cpyright.htm This walkthrough is meant to provide you with some practical steps Read More... Posted Tuesday, May 29, 2007 3:49 PM by alextch | 0 Comments Filed under: PKI, WCF Attachment(s): WCFSecureService.zip