Archives
-
Categories
-
Recent Posts
- Getting started with Azure Key Vault
- Windows 11 has blank icons on the taskbar ? try this fix
- Updating the Windows app to the latest version
- Confused about Microsoft 365, Office 365, Enterprise Mobility + Security, and Windows 11 Subscriptions ?
- Getting more out of Windows 365 – Securing your Windows 365 PC’s
-
Recent Comments
- ncbrady on Fixing: “Total identified Windows installations: 0”
- Blake S on Fixing: “Total identified Windows installations: 0”
- ncbrady on Fixing: “Total identified Windows installations: 0”
- Blake S on Fixing: “Total identified Windows installations: 0”
- Christian O'Connor on Fixing: “Total identified Windows installations: 0”
-
-
Meta
Category Archives: PKI
New video: Resolving expired certificates in a PKI (HTTPS) based SCCM OSD Lab
Introduction I use PKI based labs to test various scenarios from Microsoft. I’ve multiple SCCM (Configuration Manager) labs that are running in HTTPS only mode (PKI) using a two tier PKI infratstructure (Offline Root CA, Issuing CA). Using multiple labs … Continue reading
Posted in 2207, PKI
Leave a comment
Prepare for HTTP-only client communication depreciation in ConfigMgr
Introduction Microsoft recently announced that HTTP only communication will be dropped from ConfigMgr in October 2022 here. The advice is to enable a more secure communication method for the site either by enabling HTTPS or Enhanced HTTP. Learn about HTTPS … Continue reading
Posted in e-http, enhanced HTTP, https, PKI
Leave a comment
How can I replace an expired IIS certificate in a PKI enabled ConfigMgr environment
Introduction I was busy putting together another BitLocker Management OSD related blog post in one of my PKI enabled ConfigMgr labs (#11) when I noticed that PXE boot no longer worked. The virtual machine would attempt to PXE boot for … Continue reading
Posted in 2002, BitLocker, expired IIS cert, PKI, smspxe.log
3 Comments
Want to learn about the new Bitlocker Management feature in Microsoft Endpoint Manager Configuration Manager ?
Introduction Microsoft BitLocker Administration and Monitoring (MBAM) is the ability to have a client agent (the MDOP MBAM agent) on your Windows devices to enforce BitLocker encryption including algorithm type, and to store the recovery keys in your database, securely. … Continue reading
Posted in 1909, 1910, Group Policy, Key Rotation, MBAM helpdesk, MBAM Reporting, MBAM SelfService, PKI, pki
29 Comments
How can I configure System Center Configuration Manager in HTTPS mode (PKI) – Part 2
In a previous series of guides I showed you how to configure PKI in a lab on Windows Server 2016. In another series, I also showed you how to install System Center Configuration Manager (Current Branch) version 1802 on Windows … Continue reading
Posted in 1802, PKI
Leave a comment
How can I configure System Center Configuration Manager in HTTPS mode (PKI) – Part 1
In a previous series of guides I showed you how to configure PKI in a lab on Windows Server 2016. In another series, I also showed you how to install System Center Configuration Manager (Current Branch) version 1802 on Windows … Continue reading
Posted in 1802, PKI
Leave a comment
How can I configure PKI in a lab on Windows Server 2016 – Part 8
This series is comprised of different parts, listed below. Part 1 – Introduction and server setup Part 2 – Install and do initial configuration on the Standalone Offline Root CA Part 3 – Prepare the HTTP Web server for CDP … Continue reading
Posted in 1803, PKI, Windows 10
Leave a comment
How can I configure PKI in a lab on Windows Server 2016 – Part 7
This series is comprised of different parts, listed below. Part 1 – Introduction and server setup Part 2 – Install and do initial configuration on the Standalone Offline Root CA Part 3 – Prepare the HTTP Web server for CDP … Continue reading
Posted in PKI
Leave a comment
How can I configure PKI in a lab on Windows Server 2016 – Part 6
This series is comprised of different parts, listed below. Part 1 – Introduction and server setup Part 2 – Install and do initial configuration on the Standalone Offline Root CA Part 3 – Prepare the HTTP Web server for CDP … Continue reading
Posted in PKI
Leave a comment
How can I configure PKI in a lab on Windows Server 2016 – Part 5
In part 1 of this series, you configured your LAB for a 2 tier PKI hierarchy running on Windows Server 2016. You used PowerShell to create some virtual machines, and then installed Windows Server 2016, Windows 10 Enterprise version 1803 … Continue reading
How can I configure PKI in a lab on Windows Server 2016 – Part 4
In part 1 of this series, you configured your LAB for a 2 tier PKI hierarchy running on Windows Server 2016. You used PowerShell to create some virtual machines, and then installed Windows Server 2016, Windows 10 Enterprise version 1803 … Continue reading
Posted in PKI
Leave a comment
How can I configure PKI in a lab on Windows Server 2016 – Part 3
In part 1 of this series, you configured your LAB for a 2 tier PKI hierarchy running on Windows Server 2016. You used PowerShell to create some virtual machines, and then installed Windows Server 2016, Windows 10 Enterprise version 1803 … Continue reading
Posted in PKI
Leave a comment
How can I configure PKI in a lab on Windows Server 2016 – Part 2
In part 1 of this series, you configured your LAB for a 2 tier PKI hierarchy running on Windows Server 2016. You used PowerShell to create some virtual machines, and then installed Windows Server 2016, Windows 10 Enterprise version 1803 … Continue reading
Posted in PKI
Leave a comment
How can I configure PKI in a lab on Windows Server 2016 – Part 1
Introduction Security is everywhere, and a core component of security are certificates. Public key infrastructure (PKI) is a set of roles, policies, and procedures needed to create, manage, distribute, use, store, and revoke digital certificates and manage public-key encryption (1). In … Continue reading
Posted in PKI
Leave a comment
System Center Configuration Manager Technical Preview 1805 released
Introduction Microsoft released Technical Preview 1805 for System Center Configuration Manager at the Midwest Management Summit. Starting with TP1805, you no longer need to have PKI certs or HTTPS management points for AAD auth on CMG. Because you shouldn’t have … Continue reading