Questions tagged [certificate]

Certificates are a Public Key and Identifying Information

Within public key cryptography (such as that used in SSL and TLS), you have both a private key (that you keep secret), and a public key (that you share widely).

In order to avoid MITM (Man In The Middle) attacks, rather than publishing just the raw public key, you normally share a Certificate. The Certificate contains your public key, along with information identifying you (such as the hostname of your website, and your organisation). The identifying information is authenticated by a Certificate Authority (CA), and can be used to ensure you're talking to the right person.

Certificates are normally issued by a Public Certificate Authority, but they can be self signed (the certificate is its own CA), or issued by a private CA.

1327 questions

votes

1 answer

The certificate request was submitted to the online authority, but was not issued. The request was denied

I've a Hyper-V lab with few VMs. I'm trying to renew expired server certificate for one of my virtual machines which is running Windows Server 2019 (version 1809). I'm trying to renew the certificate from IIS: Certificate authority is residing on…

asked Apr 16 '22 at 08:52

RBT

votes

1 answer

How does OCSP handle deleted certificates?

We have a Microsoft Certificate Authority running on Windows Server 2019. We are issuing certificates to Android devices via a MDM. The Android device users browse to a web application (hosted by Apache, implemented in PHP 8) using the Chrome web…

certificate certificate-authority ad-certificate-services crl ocsp

asked Apr 13 '22 at 19:23

user2140583

votes

1 answer

Setting up CloudFront with SSL/TLS certificate and EC2 instance

Community. I have a web page served by Apache running on a EC2 AWS instance. I am using AWS Certificate Manager with CloudFront to manage SSL/TLS in order to access the web page using HTTPS My environment: Domain: some.com.do AWS Certificate…

amazon-web-services ssl amazon-ec2 certificate amazon-cloudfront

asked Apr 07 '22 at 01:27

Geraldo

votes

1 answer

802.1x Wireless with certificates for AADJ/Intune devices without user affinity

I can setup certificate distribution and wireless profiles in Intune for devices with user affinity and this works fine. The user account is synchronised with our on site AD server and NPS has an account to use for permissions. However for…

certificate azure-active-directory nps microsoft-intune 802.1x

asked Mar 18 '22 at 08:01

John Sayce

votes

1 answer

Kuberentes kubelet-client-current.pem expired

I'm new in K8s and I'm facing a problem with certificate. 1.13 version is used. One of the worker nodes is in NotReady status. I check logs and it turned out that: Part of the existing bootstrap client certificate is expired Using bootstrap…

kubernetes certificate kubeadm

asked Feb 10 '22 at 12:01

RedBluff

votes

0 answers

Private key is not generating from .p12 file

I generated my .p12 file using the below command keytool -importkeystore -srckeystore mycert.jks -destkeystore keystore.p12 -deststoretype PKCS12 The above command successfully generated a 7 KB .p12 file. After this, i tried generating my private…

windows ssl-certificate openssl certificate private-key

asked Feb 09 '22 at 18:11

node_saini

votes

1 answer

Parent Domain Certificate Authority For Child Domains

I have a parent domain and 2 child domains of that parent. All servers are Windows Server 2019. I am working on deploying security software and I need to obtain a valid certificate from the Certificate Authority. The Certificate Authority is on a…

domain certificate certificate-authority windows-server-2019

asked Feb 08 '22 at 12:56

JukEboX

votes

0 answers

CertUtil Windows Update gives me 430+ certificates?

There are several well known methods of downloading certificate lists from Microsoft, including certutil -generateSSTfromWU c:\my_cert\ Doing that (or just downloading authrootstl.cab) gives me a collection of more than 400 root certificates. Now, I…

certificate windows-update

asked Feb 04 '22 at 02:53

user165568

votes

1 answer

Windows doesn't create assign "Key Container" when adding cert tied to Cavium (AWS CloudHSMv2)

I've got two windows systems tied to the AWS CloudHSM v2 (the cavium HSM). On one, I generated the CSR, and accepts/added the cert purchased with that CSR. I can sign and the private key is pulled properly from the HSM via the Key Container. The…

windows security certificate pki

asked Jan 27 '22 at 15:12

Peter Kahn

votes

1 answer

How do you generate a certificate with a RSA key instead of a regular key?

I am trying to see how the certificate was made, I have a key file called site.com.crt a bundle file called site.com.bundle and a key file called site.com.key and I have no way of generating the same type of certificate as the old one, because the…

ssl certificate

asked Jan 26 '22 at 21:48

Sayaman

votes

1 answer

will ssh work with a .cer file?

I'm trying to set up an Avalance node on AWS. When following the instructions to set up a key pair, the file generated was a .cer file instead of a .pem file. Will I still be able to SSH onto the instance? I'm on a mac and I'm not able to get the…

ssh certificate

asked Jan 04 '22 at 22:25

DBWeinstein

votes

1 answer

Create new SubCA certificate fails with NTE_PROV_TYPE_NOT_DEF

I am trying to manually create a key and CSR for a new Windows AD CS Enterprise Subordinate CA (Windows Server 2019). I'd like to store the key in the modern Microsoft Software Key Storage Provider. It fails with Provider type not defined.…

windows certificate pki private-key cryptography

asked Jan 04 '22 at 08:47

Daniel

6,940
6
33
64

votes

2 answers

sendmail: how can I restrict access to clients that only have a valid certificate?

I want to reject all connections that don't present a valid SSL/TLS certificate. First of all is the access db file the correct one to be changing? I have already tried using the basic rule given in the documentation…

linux sendmail certificate slackware

asked Feb 02 '10 at 12:59

lxg

votes

0 answers

IIS7.5 How to make a binding for 2 domains, 2 IPs and 2 certificates

I am clutching at straws... hope you can help me with this old server. I want to bind domain1.com to ip 123.456.7.1 and domain2.com to 123.456.7.2, each with its own certificate. As longs as I configure it for http, there's no issue. My bindings…

windows-server-2008-r2 domain certificate iis-7.5 bindings

asked Nov 30 '21 at 15:35

Diederik Slob

votes

3 answers

Pass HTTPS certificates from downstream servers through NGINX proxy to client

I have a fleet of Ubuntu edge computers that host simple web HMI servers. Many are behind dynamic IPs where port forwarding is unavailable. So, to access them each uses autossh to create a reverse tunnel into a central cloud proxy server. I can then…

nginx ssl proxy certificate ssh-tunnel

asked Nov 18 '21 at 21:54

Oscar M

Prev 1 2 3

…

88 89 Next