Over 1 million tech questions and answers.

SHA2 Self Signed Cert

Q: SHA2 Self Signed Cert

Our Nessus vulnerability scanner has been flagging our computers with the following vulnerability: SSL Certificate Signed Using Weak Hashing Algorithm

Basically what it's telling us is that we need to upgrade the local Remote Desktop Certificate from SHA1 to SHA2.

These certificates are self-signed and self-generated by the local machine. If you look at the certificate you'll see that theIssued to: and Issued by: fields show the name of the local machine.

The question is: how do these auto-generated, self-signed certificates, which are currently SHA1, get upgraded to SHA2? Remember, these are not created by the local Enterprise CA, they're auto-generated by the local machine itself for Microsoft-branded software such as AD and RDC.

Looking for ideas/suggestions on how to do this.

Read other answers
RELEVANCY SCORE 200
Preferred Solution: SHA2 Self Signed Cert

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

RELEVANCY SCORE 86.4

I am wondering if there is a way to trust a SHA1 cert? We use Oracle and our version does not support SHA2. It is internal only and never sees the internet. We fully understand SHA1 and the risks. We don't want to trust them all, just our 1 cert used internally.
If its a matter of trusting them all or lowering security settings, we would consider this for our Intranet zone until we can upgrade Oracle.
Thanks.

Read other answers
RELEVANCY SCORE 78

I have lost an ATA environment previously (late last year) because i did not deal with the expiring self-signed cert.  How do i tell if my recently built ATA environment is going to suffer the same fate?  Is there a quick check i can do to see
when the cert expires?

Read other answers
RELEVANCY SCORE 74.8

So, like many of us who dont have resources to monitor every little detail of our network/infrastructure, and rely on products being self-sustaining, i did not know i would lose my ATA investment because a cert expired.  Where else does that happen? 
How can there not be any kind of recovery option for ATA Admins if they didnt catch the cert renewal in time?  
That said, since it already happened, it looks like my only option is to start over from scratch.  Does anyone have all the steps needed to remove my current ATA infrastructure completely, and then build a new one in its place?  I know where the
docs are for deploying a new ATA, but my scenario includes an existing, dead ATA deployment that cant be undone normally because i cant get into the system to "undo it".  I would appreciate any guidance on the best approach for removing an ATA
Center and two Lightweight Gateways (and anything else i've forgotten that i would need to know).  And then for starting over, is there anything i should know when about deploying a new ATA Center when an existing one was present.  Finally, is there
anything i can salvage from my dead ATA?
Thanks!

Read other answers
RELEVANCY SCORE 49.2

Test for win7 sha2?

Read other answers
RELEVANCY SCORE 49.2

I maintain 2 webservers that host identical websites. 1 is a dmz box running a SHA1 certificate, the other is an internal server that has a SHA2 certificate. Internal users, utilizing Windows 10, get cert errors. If they hit the SHA1 server (same software) no cert errors, and they access the website without issue. I am stumped on this one, and any help would be appreciated.

Read other answers
RELEVANCY SCORE 49.2

How to enable SHA2 in Windows? If we installed the latest security <g class="gr_ gr_43 gr-alert gr_spell gr_inline_cards gr_run_anim ContextualSpelling ins-del" data-gr-id="43" id="43">rollup</g> updates for
windows 7, is enable the SHA2 automatically???
Kindly clarify??

Read other answers
RELEVANCY SCORE 48.4

Hello everyone.
I'm kind of desperate at the moment. Since Microsoft change the singing of the window updates to SHA-2, the updates are going in a loop (Installing, reboot, faile, repeat) and don't want to install. I've read that you need both of the following updates for
it to work KB4490628 and KB4474419 install. Looking at the installed updates, I see that both are there. 

I'm pushing the updates through a W2012R2 WSUS server.
Any ideas?

Thanks you all

Read other answers
RELEVANCY SCORE 48.4

Hi Team,
Just wanted to know that 
Does NTML support SHA1/SA2 , as with centos 7.4 MD4/MD5 is deprecated ?

Read other answers
RELEVANCY SCORE 43.2

Is anyone certified here??

Am working on and wanting to take the test on the last week of December.

I am watching professor messer vids.
Has any one tried test king?

Am getting the cram exam book next month.
 

A:getting N+ cert.

I am Network+ certified circa 2006. Anything you are looking for?
 

Read other 3 answers
RELEVANCY SCORE 43.2
Q: A+ cert

Hey, im just wondering if ne one knows the answer to this:
(since there are 2 parts to A+ cert.)
I took the old core hardware A+ test, 220-301, last summer, and i have school so i didnt take the other one. Now i want to take it the other half (OS), but there are new A+ tests now, so im wondering if i take the old OS test i still get the cert? Or is it useless? Or do i need to write both new ones?
THanks
 

A:A+ cert

Likely yes. Ask them. It all depends on whether they gave you a time frame by which you had to take the second test?
How much did you spend for the test taken? Did you pass well with a good score?
 

Read other 3 answers
RELEVANCY SCORE 43.2
Q: cert's

will there be certification on win xp?
 

A:cert's

the exams for win2k and XP will be interchangeable, from what i've heard. and so far, there won't be a required upgrade for current mcse's (for windows 2000)

you should check out http://www.microsoft.com/train_cert for more info...

 

Read other 1 answers
RELEVANCY SCORE 42.8

I'm currently in 60-780 Operating Systems class and we will be taking the Windows 7 Cert this October. Is there any advice to prepare myself for it other than study? Any links to something I should check out would be helpful. I'm new here so thanks for the help guys!

A:Windows 7 Cert.

Give this ago

Its really helpful

Microsoft Virtual Academy ? Free IT Training, Online Learning of Microsoft Technologies

Read other 1 answers
RELEVANCY SCORE 42.8

Hey all,

We've just set up a Cisco 3000 series VPN on our network, and are using an internal server here as the certificate server for the VPN clients.

Just one problem. I'm still fairly new to doing new things on Windows 2000.

So I've been going through Microslop's site trying to figure out exactly how to set up the certificate server here. But I haven't found anything which explains everything, or if I need to install something, (besdies Cisco's VPN client) on the client computers.

I've created a couple keys through Certificate Server, but have no idea how to go about using them, or how to view the keys like in NT, like;
---------
dsfjsfhajalf
asfsfghsgjhf
2klg4hjglufi
lashg9hgw
---------
You know, that big encrypted key.
So if anyone knows a quick explanation of this, or where to find a description of what I need to do, I will be forever indebted to you.
Thanks.
 

Read other answers
RELEVANCY SCORE 42.8

We have a working DA environment using a single server, we are planning to go NLB  and Multisite but MS advises not to use a self signed cert for NLS which we currently do use.
I have created a Web server cert for our NLS server following the below issued by our internal CA
https://docs.microsoft.com/en-us/windows-server/remote/remote-access/directaccess/add-to-existing-vpn/step-1-configure-da-inf-davpn

I add the NLS cert on our DA server, click next and then go to apply the DA settings.
When I do this it says DNS name does not exist. I can create this manually before adding the cert but it gets removed. If I tick use self-signed cert the DNS name gets created automatically.
I can't understand what I'm doing wrong and why DA will not accept our CA issued NLS cert

Read other answers
RELEVANCY SCORE 42.4

http://www.us-cert.gov/cas/techalerts/TA07-024A.html

TCP and IP option leak.

If you, or any Cisco routers that you know of that directly face the Internet / do something silly like allow unACL'd web admin access, please upgrade IOS.
 

Read other answers
RELEVANCY SCORE 42.4

Hey guys,

I have a few questions about how Windows 7 handles checking the internet for new certs and CRL's. We are looking to run Windows 7 Embedded in an offline configuration that still relies on creating a secure SSL negotiation with an in-house web application.
We're exploring options such as opening the our network's firewall to allow outbound access to GoDaddy\Microsoft CRL's and Microsoft's cert repository that it can get new Trusted Root certs from

1. When and how often does Windows check for new root certificates?
2. When and how often does Windows check the CRL's for cert revocations?
3. What websites does Windows look at for Microsoft's CRL and cert repository?

Thanks!

Read other answers
RELEVANCY SCORE 42.4

has anyone taken this?
 

A:How hard is the N+ cert test?

your book and transceder together is what i would use. dont bother too much with the vce
 

Read other 1 answers
RELEVANCY SCORE 42.4

Hi,

I'm getting an error msg on my own website after installing my Verisign SSL Seal. Certificate itself works fine, but the seal (click here to verify) is giving errors on one IE browser and not another.

Can you guys please help me by telling me if you see an error msg displayed on the IE information bar when you visit my page:

http://applesofgold.com/test.html

I'm getting an error with my new Verisign SSL cert on my computer at work but not at the one at home. Using IE on both computers, same version, v. 7.0. I don't get this error on FireFox on either computer.

The error I get is:

To help protect your security, IE has blocked this website from displaying content with security certificate errors.

I don't understand why it's showing up on my work computer and I'm hoping it's not showing up on other people's computers.

I would love it if I got a lot more computers checking to see if they get the same error.

Please help!

Thank you,
Afshin

A:Verisign SSL Cert Error on IE?

I did not try the link but I will offer a few words of advice though.

You do not want to go into any restricted sites at work and should wait till ya get home but if you cannot do that then here ya go.

Open IE7

Click Tools
Click Internet Options
Click the Security tab
Click the Internet icon
Click Custom level
Locate Display mixed content
Click the radio button next to Enable (the default setting is 'was Prompt'
Click OK to save your changes

Have fun!

Read other 2 answers
RELEVANCY SCORE 42.4

I installed ATA with the self signed certs as i was having trouble getting it to work.  Now that I have it working i want to put a real cert on the management site.  What is needed to complete this?  

Do i simply go to iis and change the cert?  
Do i also need to change it in the configuration page where it references it by ip address?
When i do that, do i need to redeploy / update the gateways?  

I am on 1.6 as of an hour ago.  Please reference the version number you are familiar with in your responses.  I would imagine that they are the similar if not identical but i want to be sure we are on the same page.  

Read other answers
RELEVANCY SCORE 42.4

Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Home Premium, Service Pack 1, 64 bit
Processor: Intel(R) Core(TM) i7 CPU Q 740 @ 1.73GHz, Intel64 Family 6 Model 30 Stepping 5
Processor Count: 8
RAM: 4084 Mb
Graphics Card: NVIDIA GeForce GTX 460M, 1536 Mb
Hard Drives: C: Total - 463819 MB, Free - 373230 MB;
Motherboard: TOSHIBA, Qosmio X505-Q894
Antivirus: avast! Antivirus, Updated and Enabled

I keep getting a popup message about redirecting to a website that does not have a valid certificate, do i still want to proceed. This happens even when there is nothing else open on my computer. My computer had blue screened twice, done a check disk for errors spontaneously and can't successfully restore a previous windows restore point... although i think the windows restore issue is not related. I've had that issue since I bought the computer and even when it was put in for warranty for the issue it still couldn't update windows when they gave it back to me >.< I've backed up all my data. Thanks in advance for the assistance!
 

A:Go Daddy cert not valid.

Read other 15 answers
RELEVANCY SCORE 42.4

Getting an invalid security cert. warning on chase.com. over the last 3 days on a home computer but not on other work computers at a different location. ?
 

A:invalid security cert

Read other 8 answers
RELEVANCY SCORE 42.4

I recently read that a Netherlands CA, DigiNotar, had been hacked so updates are coming out to remove it from the CA list but that it should mostly affect Iran. So today I got an error message trying to access my bank (neither it nor I have any connection with Iran). The error message said "Peer's certificate has been revoked".

It seems too much of a coincidence for this to be unrelated so my question is whether the problem is wider-spread than the article said, or did one of the updates revoke a wider range of certificates than was needed, or did I just get unlucky?

Does anybody know what's going on with this problem? Thanks.
 

A:Revoked cert problem

Read other 13 answers
RELEVANCY SCORE 42.4

Dear all,
ATA cert in lightgateway DC or gateway are going to be expired. how can I update the cert?
regards,
stan

Read other answers
RELEVANCY SCORE 42.4

An Introduction to Malware by CERT-UK:

https://www.cert.gov.uk/wp-content/uploads/2014/08/An-introduction-to-malware.pdf

An excellent, easily understood guide that covers the bare essentials of malware types - such as trojans, rasomware, phishing, keyloggers, rootkits, etc.

First rate infos.
 

Read other answers
RELEVANCY SCORE 42.4

I am intrested in taking the A+ certification exams. I have no formal training in these areas. I have been an I.S. manager for 7 years but would like to pursue the cert. for personal gratification.
Can someone give me names of the best documentation for both hardware and software exams and any other advice that might be helpful.
thanks, Geno
 

A:Advice please, best book for A+ cert

The best books I found for studying for exams are by coriolis.

http://www.examcram2.com/
 

Read other 1 answers
RELEVANCY SCORE 41.6

I hope this is the place for this post... I've been thinking of getting A+ Certified. I also heard in Dec. or Jan. they will take out the DOS stuff and put in Windows 2000. I know both, but would one Cert. be better than the other - or is there an advantage to getting it now or waiting?

Thanks!

Cory

------------------
~~~~~~~~~~~~~~~~~~~~~~~~~~~
http://ShopComputerAces.com
http://HeadLunatic.com
http://IamNotLost.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

A:A+ Cert. - Get it now or wait for Win2K stuff???

Now or never. I too had this question in mind, but have settled for doing it asap.

BTW, DOS/WIN 95/98 are still quite wide spread.

After A+ try going for Network+, CCNA and MCP

Best wishes
 

Read other 1 answers
RELEVANCY SCORE 41.6

Whenever I try to play certain games on my Compaq 5420 d/top w/ Win. XP, about 5 to 10 mins. into the game, the keyboard locks up & the "half-moon" hibernation light comes on on the keyboard, however the rest of the computer & the game running continue to run fine, with both mouse or gamepad continuing to function normally.
This problem only seems to happen with Tomb raider 3 & Dungeon keeper 2 as well as Blaxun contact 4.4 ( a client prog. for the "Cybertown" 3d chat site).
 

A:Keyboard goes to sleep in cert. games

Just a few suggestions...

Try turning off all power saving features...

If that is a no go try uninstalling the games and reinstalling them under the compatibility mode Right click on the Setup.exe goto properties - the compatibility mode tab and check the box for run under compatibility mode and select the OS the game was designed for...
 

Read other 2 answers
RELEVANCY SCORE 41.6

Hello All,

I just found out the the self signed cert I was using on the center machine has expired. I figured no big deal I will change out the cert and everything will be fine. I tried to go to the web page to login to ATA and found not page available. I notice the
service was not running on the center machine. I tried to start the service and the service will not start. I found the following error in the error logs:

2018-02-12 17:58:17.7830 1948 5   00000000-0000-0000-0000-000000000000 Error [SecretManager] Microsoft.Tri.Infrastructure.ExtendedException: Certificate is invalid [CertificateThumbprint=C2C1B90EE5CFDBFB6F2A0352EC88864029740A25]
   at Microsoft.Tri.Infrastructure.Framework.SecretManager.UpdateMutableConfiguration(SecretManagerConfiguration configuration)
   at Microsoft.Tri.Infrastructure.ActionExtension.<>c__DisplayClass1_0`1.<ToAsync>b__0(TItem _)
   at Microsoft.Tri.Infrastructure.Framework.ConfigurationManager`2.<>c__DisplayClass17_0`1.<<RegisterConfigurationAsync>b__0>d.MoveNext()
--- End of stack trace from previous location where exception was thrown ---
   at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw()
   at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task)
   at Microsoft.Tri.Infrastructure.Framework.ConfigurationManager`2.<RegisterConfigurationAsync>d__19.MoveNext()
---... Read more

Read other answers
RELEVANCY SCORE 41.6

Dell latitude d630 with smart card reader.
I want to use a smart card for authentication without a CA.
I kind of wonder if I can use any smart card of my choice (gas, groceries, credit) as an authentication device.
Can WinXp read the card, confirm my request to use it, and drive on?
Again, I want to use a self cert, or un-cert, card, a one-off card, as auth for my laptop.
Any suggestions?
 

Read other answers
RELEVANCY SCORE 41.6

hello,

Do i need a certificate server to deploy EAP-TLS to laptops? We have a godaddy certficate that we purchased for our wireless network and i'm wondering if i can use that? I can push out the certificate via GPO, right? My main question is do i need to install
an CA server because we need to generate a client certificate. We are using NPS and cisco wireless controller. EAP-PEAP works, but my company wants to move to EAP-TLS.

Any advice would be greatly appreciated.  

Read other answers
RELEVANCY SCORE 41.6

Chrome decided to change the way they handle SSL certs and apparently the common name is no longer enough to pass validation.  So i am scrambling to change all of our SSL certs that we issue from our CA.  Because of this I have to update the ATA
web interface cert.  

When i go to the ATA console and select my new cert, my gateways sync up and when i try to activate it, it says activation failed.  I saw in another post to check a log file and here is my result.  Can anyone give me any info on what is going on
here? 


2017-04-30 03:13:45.7643 3052 393 d6bb349f-57b7-490b-841d-d9cd8b2039ae Error [CryptographicException] System.Security.Cryptography.CryptographicException: Bad Key.

   at System.Security.Cryptography.CryptographicException.ThrowCryptographicException(Int32 hr)
   at System.Security.Cryptography.RSACryptoServiceProvider.DecryptKey(SafeKeyHandle pKeyContext, Byte[] pbEncryptedKey, Int32 cbEncryptedKey, Boolean fOAEP, ObjectHandleOnStack ohRetDecryptedKey)
   at System.Security.Cryptography.RSACryptoServiceProvider.Decrypt(Byte[] rgb, Boolean fOAEP)
   at Microsoft.Tri.Infrastructure.Utils.SecurityProvider.ReencryptAsymmetric(Byte[] encryptedData, X509Certificate2 sourceCertificate, X509Certificate2 destinationCertificate)
   at Microsoft.Tri.Center.Management.Controllers.SystemProfileController.<UpdateGatewayConfigurationsAsync>d__16.MoveNext()
--- End of stack tr... Read more

Read other answers
RELEVANCY SCORE 41.6

Good Day to all. I hope you are fine and doing well.

I need your help about the Establishing the CERT/CSIRT

I am in phase of planning the CERT Process and Team. I will appreciate if you can help me for the following questions:

1. What Scope the CERT should have ideally it should address the incidents related to the information security i.e. Confidentiality/Integrity/Availability, but what will be the role of CERT in case of Physical Security Breach or Theft of Critical Hardware?

2. Should CSIRT also come in action in case of any IT Security Policy violation for example Pornography although it does not hit the three pillars of the IT Security CIA but it is against the company policy so who is going to take care of such policy violation?

3. How can I define the categorize incidents levels should I do it at high level for example DoS Attack, Hacking, Virus and Malicious Program and Unauthorized Access to Information or I should be more specific and define each incident in detail.
 

A:Establishing Scope of CERT/CSIRT

2. Considering that porn sites are known to install malware, I think CSIRT should come and do a scan. If nothing malicious is found, the team could at least wag a finger at the user. But, porn surfing can also be taken care of with a content filter at the gate.

3. Are you trying to assign priority to incident response? What do you want to use the levels for?
 

Read other 1 answers
RELEVANCY SCORE 41.2

Hi all,

Got a question if you please..

We recently installed an SSL cert as we were getting annoyed with the self cert ones.

Since we've installed this SSL cert our out of office isn't working. You can enable it either in outlook or OWA and set the message to both internal and external, but its just not actually being sent internal or externally.

It was working fine before the ssl was installed, but not afterwards. Any idea on where I need to look for this?

Thanks
Matt
 

A:Out of Office stopped working since SSL cert installed

Sorry - I also want to add that all the pc's are for some reason set to use outlook anywhere (even though half of them are internal users only.. Not sure why or how that was setup?!)

Test exchange connectivity site came up with:

Testing SSL mutual authentication with the RPC proxy server.
Verification of mutual authentication failed.
Tell me more about this issue and how to resolve it
Additional Details

http://technet.microsoft.com/en-gb/library/445d87c5-422f-4249-821b-0c805a058ff4.aspx
That site above tells you what it should match, our SSL cert says mail.domain.com and on the http over rpc it also shows as being "msstd:mail.domain.com"

Thanks
Matt
 

Read other 2 answers
RELEVANCY SCORE 40.8

Hiya

I think one of the Moderators changed my title of my last post so I have put it like this. The CERT/CC is a recognised security site.

CERTŪ Advisory CA-2001-28 Automatic Execution of Macros

An intruder can include a specially crafted macro in a Microsoft Excel or PowerPoint document that can avoid detection and run automatically regardless of the security settings specified by the user

Systems running:
Windows
Microsoft Excel 2000
Microsoft Excel 2002
Microsoft PowerPoint 2000
Microsoft PowerPoint 2002
Macintosh
Microsoft Excel 98
Microsoft Excel 2001
Microsoft PowerPoint 98
Microsoft PowerPoint 2001

http://www.cert.org/advisories/CA-2001-28.html

Regards

eddie
 

A:Office Security Issue: leading to CERT/CC link

Yes, Eddie. I did. This forum is really for questions, not tips/tricks or informational articles, but I thought we'd leave it in here for a while. I'd like you to copy your above post and place it in the original. I'll change the title of it again:

http://forums.techguy.org/showthread.php?threadid=54911

(I don't want this thread posted twice. Next time, please just email me or any other moderator or "Report this thread."
 

Read other 1 answers
RELEVANCY SCORE 40.8

If you use the Internet Explorer, Google Chrome or Apple Safari browsers to conduct PayPal transactions, now would be a good time to switch over to the decidedly more secure Firefox alternative.
That's because a hacker on Monday published a counterfeit secure sockets layer certificate that exploits a gaping hole in a Microsoft library used by all three of those browsers. Although the certificate is fraudulent, it appears to all three to be a completely legitimate credential vouching for the online payment service. The bug was disclosed more than nine weeks ago, but Microsoft has yet to fix it.



Source -
IE, Chrome, Safari duped by bogus PayPal SSL cert ? The Register

A:IE, Chrome, Safari duped by bogus PayPal SSL cert.

Yet another reason to use firefox. I have for years.

Read other 1 answers
RELEVANCY SCORE 40.8

Hi,

Ran a full scan on my comp and it says it detected 5 dangerous events. The option to disinfect was grayed out (I use Kapersky Lab) - I only have quarantine as an option and when I picked that, it asked me to choose what file to open. Eh? Does the fact that my antivirus already detected the events mean it's been handled or I need to do something? Because earlier a security certificate window kept popping up, asking me if I want to install it. I didn't, of course, and worked up the courage to delete all the files the antivirus detected as threats.

....That may have been a stupid move, y/y? The window is still popping up but not as frequently. Is it even a related problem?

I am IT-blind *whimper* My Hijack log below. Thank you!

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:06:09 PM, on 12/7/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\Rund... Read more

Read other answers
RELEVANCY SCORE 40.8

US-CERT is aware of a recent surge in fraudulent phishing e-mail messages. The messages, claiming to be from the United States National Medical Association, contain a...link that, when followed, will direct the user to a malicious website. These messages are not from any United States government agency...us-cert.gov

Read other answers
RELEVANCY SCORE 40.4

Few of my Classmates have written the 70-680 exam recently, and they failed,, they said there were couple of questions from Server 2008.
I am confused whether to write the exam or not?

If someone has written the cert recently, please tell me the correct scenario
 

Read other answers
RELEVANCY SCORE 40.4

Hi,

We've installed ATA in our demo environemnt more than a year ago.
When I verified the config, I noticed that the ATAcenter and ATACOnsole certificate are expired.

Because of this, none of the ATA services can start, and I'm not able to renew the certs from the ATA console.

Is there a way to manually update the certificate, without the need to use the console?

Read other answers
RELEVANCY SCORE 40

Dears

Hi, I Faced below Error in all my virtual machines in our Domain, how can I fix it?its a big headache for me.

note:We don't use template in office and also CA cert was done till 2020.

Error 0xc800042d

Read other answers
RELEVANCY SCORE 39.6

Hello,I am having multiple problems from what I believe is some sort of virus. I am getting random advertisement popups, warnings across the top of webpages with viruses found and need to scan, as well as the inability to load profiles including the administrator.I have gone through all the steps prior to posting here and nothing has seemed to work. I was not able to turn on the firewall because when I tried to load the admin profile in safe mode, I just got the black screen with safe mode in the corners. Below is my txt document.DDS (Ver_09-01-07.01) - NTFSx86 Run by Brian at 22:25:43.14 on Wed 01/07/2009Internet Explorer: 7.0.5730.11 BrowserJavaVersion: 1.6.0_05Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.2039.1528 [GMT -5:00]AV: avast! antivirus 4.8.1296 [VPS 090107-0] *On-access scanning enabled* (Updated)============== Running Processes ===============C:\WINDOWS\system32\svchost -k DcomLaunchsvchost.exeC:\WINDOWS\System32\svchost.exe -k netsvcsC:\Program Files\Intel\Wireless\Bin\EvtEng.exeC:\Program Files\Intel\Wireless\Bin\S24EvMon.exeC:\Program Files\Intel\Wireless\Bin\WLKeeper.exesvchost.exesvchost.exeC:\Program Files\Alwil Software\Avast4\aswUpdSv.exeC:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exeC:\Program Files\Alwil Software\Avast4\ashServ.exeC:\WINDOWS\Explorer.E... Read more

A:Multiple problems from an infection that has popups, warnings across top of webpage with too many viruses, and not loading cert...

Hello Brian and welcome to Bleeping Computer,1. Please download GooredFix and save it to your Desktop.Select "2. Fix Goored" by typing 2 and pressing Enter. Make sure all instances of Firefox are closed at this point. Type y at the prompt and press Enter again. A log will open, please post the contents of that log in your next reply (it can also be found on your desktop, called GooredLog.txt).Note: If you receive a message saying that GooredFix needs your system to be restarted, please close all applications and reboot your system. Please also allow any registry changes that may be prompted by any of your security programs.2. Download LSPFix and extract it to your desktop.Don't use it yet.A tutorial on the use of thsi tool can be found here : http://www.bleepingcomputer.com/tutorials/using-lsp-fix-to-remove-spyware/3. Please download ComboFix from one of the locations below, and save it to your Desktop.LinkLinkLinkDouble click the ComboFix icon to run it.If ComboFix askes you to install the Recovery Console, please do so..The Windows Recovery Console will allow you to boot up into a special recovery mode, in case your computer has a problem after an attempted removal of malware. This allows us to help you.Once the Recovery Console is installed, continue with the malware scan.Note: Make sure not to click ComboFix's window while it's running. That may cause it to stall or freeze.Please post the log from ComboFix (can also be found as C:\ComboFix.txt) in your ... Read more

Read other 7 answers
RELEVANCY SCORE 39.6

MODS: Please move if incorrect forum

Threads developing @ Avast & BC:
https://forum.avast.com/index.php?topic=166531.0
Avast flagging Firefox Sync - Anti-Virus and Anti-Malware Software

FFox Sync hosted on Amazon server farm; Doesn't appear to be FP per User Sirmer's reply #22





Quote:
Hello,

we will remove this detection from our black list but there was a bit problem because this domain is also hosting of newly generated malicious sites, it was a block reason.

A:Avast flags Firefox Sync, FFox blocks Untrusted/invalid Cert

Got to love the upgrade now popup message
Typical of a company that has a paid for version and a free version.
Hostageware.

Read other 2 answers
RELEVANCY SCORE 39.6

I have a user whose profile became corrupted and lost EFS keys on recreation of profile.  I have a valid EFS Recovery policy in the domain.  I have logged on as an administrator, imported the recovery key PFX (public AND private keys both and double
checked).  I checked the file for recovery agents and matched the thumbprint to my key in the certificate store.  They match.  So my admin account has the private key imported (which seems to be the most common mistake).  Yet, I still cannot
decrypt the files.  I get access is denied every time.  I also checked NTFS permissions and those are correct.  The recovery key is valid and is not revoked.  The certification path is all green checkmarks.  Everything seems to be
in place for a recovery of the data.  But it's not working.
What am I missing?

A:EFS Recovery Agent Fails to Decrypt / Cert installed, thumbprint matches / What am I missing?

Yes and no.
The problem was that I had created a custom EFS Recovery Agent certificate template for a non-standard validity period (10 years instead of 2) and when I originally copied the default template to make a new one I converted it to a Server 2008 template. 
In order for EFS to work correctly, it must be kept as a Server 2003 template.
So while I did eventually get EFS working by creating a new 2003 template version, I was never able to recover the files with the recovery agents created with the 2008 template.

Read other 22 answers
RELEVANCY SCORE 39.6

Hi all,
Thanks in advanced for your advises :D!
The situation is as follow:
1st part - UNABLE TO ENCRYPT
- Our AD server is 2012 R2 v. 6.3 Build 9600.
- Users below are using Windows 7 Professional and joined domain.
- I created new certificate in Public Key Policy/ Encrypting File System as Administrator and push down to the domain group
- We started doing encryption EFS for our users...most are ok, except one PC A.
- User A who is using PC A we cant encrypt his files. Pop up is 'The Parameter is Incorrect' when doing EFS encryption.
- if User B log in to PC A, his files on PC A can be encrypted. If user A log in to user B PC, his file can be encrypted as well.

- So seems like issue is only at PC A and only with user A
so my 1st Question: Why is this happening and how to prevent this? (possibility is user profile corrupted but why and where it's corrupted?

2nd Part - UNABLE TO USE ENCRYPTED PST FILES

- I decided to copy all User A files (including Outlook pst), delete his profile and recreated new profile with same name
- Copy all his file over, set up outlook with old pst file again. And start doing encryption include outlook files.

- Encryption went smoothly.
- Next day (or may be when user restart etc..) when open, Outlook prompt Access denied for his pst file.
- All other files that was encrypted together with pst files (doc, xls etc.) are able to open and use normally
- At the same time, one more user reported having this Outlook access denied... Read more

Read other answers
RELEVANCY SCORE 36.8

Hi,

If I click on "GMail" from google.com, it claims bad security certificate through "a248.e.akamai.net"...happens usually but not every time.

Also had similar problems with yahoo mail (doubleclick) and bank website (also doubleclick) in the past.

Computer is suddenly sluggish and freezing, requiring hard reboot approximately 3x per week (which is very unusual for my computer).

Could not finish GMER scan thrice due to a "report to windows" error during scan (sorry, I copied error info....but then brilliantly copied Over it before pasting) but it seems to have fully run the fourth time.

Please advise, DDS follows.

Thanks!

Mikela

~~~~~~~~~~~~~~~~~~~~~~~~~~~~

DDS (Ver_09-07-30.01) - NTFSx86
Run by Mik?la at 8:45:55.40 on Wed 08/12/2009
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3070.2493 [GMT -4:00]

AV: Spyware Doctor with AntiVirus *On-access scanning disabled* (Updated) {D3C23B96-C9DC-477F-8EF1-69AF17A6EFF6}
FW: Norton Internet Worm Protection *disabled* {990F9400-4CEE-43EA-A83A-D013ADD8EA6E}

============== Running Processes ===============

C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
C:\WINDOWS\system32\svchost -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svc... Read more

Read other answers