Tag Archives: CA

Configure AD CS to use a static DCOM port

Normally when you start a Windows CA server it allocates a random high port number for the service to listen on. When clients want to enroll certificates they find this dynamic port number by asking the CA Server’s RPC Endpoint … Continue reading

Posted in Okategoriserade | Tagged , , , , , | 8 Comments

The option Enterprise unavailable during CA installation?

When installing a Active Directory Certification Authority (or  CA server for short), the Setup Type option Enterprise might be greyed out: This is most likely because you are not running the installation with an account that local administrator on the … Continue reading

Posted in CA, PKI | Tagged , , , , | Leave a comment

Which Root CAs do you really trust?

When I ask people which Root CAs they trust, they usually show me the list in Trusted Root Certification Authorities. Like this one, from a freshly installed Windows Server 2012: But that is actually not the entire truth. If I … Continue reading

Posted in PKI | Tagged , , , , , , | 1 Comment