Other stuff...

MobileIron – replace SSL certificate

René Jorissen on February 1, 2018 4 Comments • Tags: #certificate #core #mobileiron #replace #sentry #ssl

Something completely different: changing the SSL certificate on MobileIron Core and Sentry. In total, I had to replace 5 certificates. 4 certificates are replaced via the Core web interface and 1 certificate needs to be replaced via the Sentry web interface. Core Within the Core web interface you have to change the certificated in two … Read More

Management, Security

NetScaler VPX – management certificate

René Jorissen on October 9, 2015 0 Comments • Tags: #certificate #management #netscaler #ssl #vpx

I would like to upgrade my current NetScaler VPX Express configuration via GUI. For some security reason Internet Explorer and FireFox aren’t able to access the GUI. They return the error message that the NetScaler is using a wrong SSL certificate. The default SSL self-signed certificate is installed on the appliance. I have uploaded a … Read More

Mail relaying

Export StartTLS certificate from SMTP server

René Jorissen on May 5, 2015 2 Comments • Tags: #certificate #export #smtp #smtpoffice365com #starttls

While configuring Office365 as the messaging (SMTP) server within Aruba ClearPass, I needed to upload the certificate from the StartTLS session to the certificate trust list from ClearPass. I had to export the certificate for smtp.office365.com via the following OpenSSL command: openssl s_client -showcerts -starttls smtp -crlf -connect smtp.office365.com:587 After running the command, you will see … Read More

Firewalling, Security

ISA Server 2006 array – renew certificate

René Jorissen on May 23, 2011 0 Comments • Tags: #2006 #array #authenticate #certificate #channel #configuration #encrypted #isa #renew #server #ssl #storage

When configuring a Microsoft ISA Server 2006 array you have two options for authentication and communication between the Microsoft ISA 2006 Configuration Storage Server and the array members. Windows Authentication: Choose this option if ISA server and the Configuration Storage server are in the same domain, or in different domains with a trust relationship between … Read More

Security

Windows LDAPS expired

René Jorissen on June 17, 2010 0 Comments • Tags: #authority #certificate #certsrv #expired #ldaps #windows

A lot of appliances and/or security solutions use LDAP to synchronize users from an Active Directory or an eDirectory environment. Active Directory is LDAP enabled by default. If you would like to harden your network,  you would like to use LDAPS. LDAPS is a term to refer to LDAP communication over SSL. Intercepted LDAPS traffic … Read More

Configuration Example, Security

Import PKCS12 certificate on IOS router

René Jorissen on February 11, 2010 7 Comments • Tags: #ca #certificate #crypto #import #ios #passphrase #pkcs12 #pki #router #tftp #trustpoint

Nowadays IOS routers can be configured with WebVPN (Clientless SSL VPN) functionalities. WebVPN allows a user to securely access resources on the corporate LAN from anywhere with an SSL-enabled Web browser. To secure the connection you should use a SSL certificate to encrypt all transferred data. There are different ways of creating and importing SSL … Read More