Collaborate Disseminate
Environment:
A multi-tiered Active Directory (AD) where tier-specific admin accounts are restricted to log on to only their tier servers.
Microsoft’s Certificate Services (CS).
Let’s say the CA tier is A and the admin requesting a Code S… Continue reading Requesting an user-specific certificate in a tiered domain
Chance is one gets an invalid certificate warning when one follows this link https://www.cnss.gov. As explained there (same warning) this is on purpose, and the solution is supposed to be to install1 extra root Certification Authority cert… Continue reading Support for domain-specific root CAs in X.509 certificate format, OS and browsers
My organisation, say Acme, is building an e-signature platform where global businesses sign up and use the platform to send out e-signature requests. And when signers in a particular e-sign request sign the document, Acme must digitally si… Continue reading How to feasibly digital sign high volume documents with CA issued digital certificate?
Is there any tool out there that will monitor my system’s use of root CAs? So far I have not found anything, and so I am hoping that this community will know if such a tool exists.
For background, I use Windows, which comes with its own c… Continue reading Is there a tool for auditing my root certificates?
I have a key pair which I used to generate a CSR.
Once I enrolled that CSR PKCS10, I get from the PKI (or CA) a certificate signed with the PKI private key.
From here, I would like to know if my private key is useful in any way in regards … Continue reading What happens to the key pair once the CSR has been enrolled?
Regarding the TLS 1.3 Handshake Protocol:
When the Server sends it’s certificate, exactly how does the Client validate this?
I know at a high level the Client is verifying the data the Server sent matches what the Certificate Authority con… Continue reading What happens at a low level when authenticating server certificates?
how are you?
My orgazation is transitioning to using GoDaddy certificates, and I’m exploring if there’s an established automated process to download and apply renewed certificates from GoDaddy to our Windows or Linux servers
I’ve been rese… Continue reading Godaddy automatic renewals (Powershell & alternatives)
To this date, is there a specification or a de-facto industry standard or how applications are supposed to perform certification path building in the context of X.509? I am specifically asking about the part of the certification path build… Continue reading Certification path building for 509 certificates
I am using Fiddler, and I have to insert a CA Cert to decrypt the SSL certificate coming out of my device. My device running Android 13 is rooted, and when I installed my cert, it went into the user’s section (as expected).
However, I also… Continue reading Move a user CA cert to a trusted root cert in Android 13
I have my own CA root certificate and I’ve been signing CSR (with this certificate) directly with openssl x509 -req (internal https, mqtts, etc). For a project I need to have revocation lists of the signed certificates and so I googled how… Continue reading The current crlnumber file is not being created [closed]