PKI Archives – ITomation

Submit CSR to Microsoft CA using CertReq

As organizations begin to harden certificate templates on their internal Microsoft CA authorities we are beginning to see more and more environments where Microsoft CA’s web enrollment option is no […]

2023-01-042023-01-04Certification Authority, PKI

Event 36870 Schannel 10001 – A fatal error occurred

When we spend two weeks trying to resolve an issue that affects multiple servers it is worth documenting its solution. But not only to jot down a 2 liner, but […]

2020-08-242022-06-07PKI, Windows Server

Easily Replace vSphere Web Client Certificate

For some reason the vast majority of VMware environments we run into continue to utilize the default untrusted self-signed VMware web client front end certificate. Why? Who knows – maybe […]

2020-05-182023-02-02Certification Authority, PKI, VMware, vSphere

Ubuntu Certbot Update

With the upcoming deprecation of TLS-SNI-01, Let’s Encrypt certificate renewals may start breaking for some clients. For more information regarding the TLS-SNI-01 ACME protocol deprecation see Bulletproof TLS Newsletter #37. […]

2019-01-312020-01-13Linux, PKI

Issue Subordinate CA Certificate from Offline Root CA

The other day, a client was deploying a new solution and needed a subordinate (SubCA) certificate for their networking device. The device basically needed to issue its own trusted certificates […]

2017-06-192019-10-28Certification Authority, PKI