Certificate

Windows Enforcement of SHA1 Certificates

pdhewaju Active Directory, Blog, Exchange, Skype for Business , , , , ,

Since last few months there has been yellow alert from Microsoft Team on the Enforcement of SHA1 Certificates. Not only Microsoft team but also the other certificate provider and browsers too. Although most of the public SSL has already using SHA2 or we say SHA256, still there might be some private certificate with SHA1. Hence this blog is for the knowledge of details on deprecation of SHA1 certificate. The Enforcement process has been started from Feb 2017. On February 14, 2017, Microsoft will release an update to Microsoft Edge and Internet Explorer 11 that will display an Invalid Certificate warning page alerting users that their connection is not secure. Though we do not recommend it, customers have the option to continue to the website.

Continue reading

Configuring Exchange Certificate

pdhewaju Blog, Exchange , , , , , , , , ,

Another important part of the exchange server is to configure the certificate. Certificate makes the web-based mail access secure as well authenticated and this part is quite recommended on the enterprise level, if we check from the Exchange 2013 all the console is browser based. To configure the certificate on the Exchange server it requires a public certificate with minimum One (1) Subject Alternative Name (SAN) to access mail through public (Internet). Number of SAN depends upon the no. of Domain we use.

Normally after the installation of the Exchange server, if we try to access the browser we see the error as of the below screenshot that has been taken. To avoid this screen, we need to have a public/private certificate. If we are using Private certificate that, this will not work if we try to access email on browser based through internet. But if we do have a pubic certificate, it will allow us secure connection for both public and private network.
 Continue reading

Installation and Configuration of Active Directory Certificate Services.

pdhewaju Active Directory, Blog , , , , ,

Active Directory Certificate service is one of the essential service that we require for the certificate management within the organization i.e. private certificate within the premises of the organization. As of we are looking for the Exchange server blogs, it might be one of the good feature for us. Hence in this blog we will be discussing regarding the Installation and configuration of Active Directory Certificate Services (ADCS).

Let’s start with the Server Manager and start the installation procedure.

Continue reading