What’s the best practice for server certificate issuance protocols in mixed environments?

In mixed Windows/Linux environments what’s the best practice for issuing server certificates?
If you use Windows MSCA PKI, you’re kind of stuck with using previous certificates to authenticate the renewals on non-domain machines using NDES… Continue reading What’s the best practice for server certificate issuance protocols in mixed environments?

Shields up on potentially unwanted applications in your enterprise

Has your enterprise environment been bogged down by a sneaky browser-modifier which tricked you into installing adware from a seemingly harmless software bundle? Then you might have already experienced what a potentially unwanted application (PUA) can do. The good news is, the new opt-in feature for enterprise users in Windows can spot and stop PUA… Continue reading Shields up on potentially unwanted applications in your enterprise

Is SCEP safe if I use a different long and complex password per enrollment, and validate it against expected parameters?

I’m considering using SCEP to enroll iPads and other devices in my network. The iOS configuration profile allows me to configure a different password for each device.

Is it valid, and safe for me to issue many different SCEP passwords, a… Continue reading Is SCEP safe if I use a different long and complex password per enrollment, and validate it against expected parameters?