Other stuff...

Sophos UTM – An unsupported mechanism

René Jorissen on February 20, 2013 2 Comments • Tags: #adir_auth_process_negotiate #auth_adirc:311 #essentials #live #mechanism #requested #sophos #unsupported #utm #was #windows

I got some strange issues / problems while testing a Sophos UTM appliance with 9.004-34 software. The Web Security feature is filtering requests and using client authentication. The proxy is using Standard Mode with Active Directory SSO authentication. I testing the proxy by changing the proxy settings on a Citrix server. Everything was working without … Read More

Configuration Example, Security

Windows CA template – web server and private key export

René Jorissen on May 23, 2011 1 Comment • Tags: #ca #duplicate #export #grayed #key #out #private #server #template #web #windows

Creating a web server certificate request is very easy when using a Windows CA server. There is one disadvantage. The requested certificate is directly stored in the user store (by default) or the local computer store, if specified during the request. The disadvantage is that you cannot export the requested certificate including the private keys. … Read More

Security

Windows LDAPS expired

René Jorissen on June 17, 2010 0 Comments • Tags: #authority #certificate #certsrv #expired #ldaps #windows

A lot of appliances and/or security solutions use LDAP to synchronize users from an Active Directory or an eDirectory environment. Active Directory is LDAP enabled by default. If you would like to harden your network,  you would like to use LDAPS. LDAPS is a term to refer to LDAP communication over SSL. Intercepted LDAPS traffic … Read More

Configuration Example, Proxy

Juniper SA – Host Checker

René Jorissen on May 19, 2009 0 Comments • Tags: #check #checker #file #host #juniper #linux #mac #os #predefined #sa #scanner #virus #windows #x

Security is getting more and more important for people. I notice that especially IT manager would like to implement some kind of security measurements to improve the safety of their network and data. Lately I have been busy with configuring a Juniper SA solution. The customer wants to publish different kind of services through the … Read More

Proxy

Where is the Internet Authentication Service?

René Jorissen on November 4, 2008 0 Comments • Tags: #2008 #authenticate #authenticate #ias #internet #isa #nap #networkaccessprotection #networkpolicyandaccessservice #networkpolicyserver #nps #owa #pda #radius #server #services #synchronization #technet #vpn #windows

Microsoft IAS server is often used as RADIUS server to authenticate VPN users or in conjunction with ISA reverse proxy to authenticate OWA users or PDA synchronization. Today I had to install an ISA reverse proxy server with ISA 2006 Standard and Exchange 2007. I wanted to install Microsoft IAS as RADIUS server to authenticate … Read More

IPSec / SSL VPN

Juniper SA publish custom ICA

René Jorissen on June 10, 2008 0 Comments • Tags: #2000 #2003 #custom #io #ica #juniper #sa #windows

I have deployed more Juniper SA 2000 appliance and in overall I am pleased with the working of the appliance. Sometimes we have minor problems when publishing ICA sessions through the appliance. My colleagues have customers with connection problems, where suddenly the ICA sessions get disconnected and we cannot find the cause of these disconnects. … Read More