Category: Certificates

Section 5 – Implement platform protection – Implement advanced network security – Configure a resource firewall and network isolation

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 25/02/2022 0 Comments on Section 5 – Implement platform protection – Implement advanced network security – Configure a resource firewall and network isolation
Posted in Azure, Azure Firewall, Azure Front Door, Certificates, Identity, Security

In this part I cover: Configure a resource firewall, including storage account, Azure SQL, Azure Key Vault or Azure App Service Configure network isolation for Web Apps and Azure Functions Why to isolate resources inside Azure? If You enable every…

Continue Reading Section 5 – Implement platform protection – Implement advanced network security – Configure a resource firewall and network isolation

Section 5 – Implement platform protection – Implement advanced network security – Azure Firewall

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 18/02/2022 0 Comments on Section 5 – Implement platform protection – Implement advanced network security – Azure Firewall
Posted in Azure, Azure Firewall, Certificates, Identity, Security

Time for the next part in the AZ-500 study preparation guide. This time were looking at: Create and configure Azure Firewall Create and configure Azure Firewall Manager What is Azure Firewall? Azure Firewall is a cloud-native and intelligent network firewall…

Continue Reading Section 5 – Implement platform protection – Implement advanced network security – Azure Firewall

Azure AD certificate-based authentication (Preview) + Publishing CRL with Application Proxy

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 15/02/2022 0 Comments on Azure AD certificate-based authentication (Preview) + Publishing CRL with Application Proxy
Posted in Azure, Azure AD, Certificates, Identity, Onpremise, Security

Azure AD CBA allows user to sign-in with a certificate. Microsoft has removed the need for external ADFS federation. You can see the situation before this change from Sami Lamppu’s post. Feature highlights Facilitates onboarding to Azure quickly without being…

Continue Reading Azure AD certificate-based authentication (Preview) + Publishing CRL with Application Proxy

Key auto-rotation in Azure Key Vault (preview)

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 27/12/2021 0 Comments on Key auto-rotation in Azure Key Vault (preview)
Posted in Azure, Certificates, Identity, Security

Key rotation is Azure Key Vault is crucial for the safety of the keys stored in vault. You can store encryption keys, SAS-keys, user credentials, API keys and other secret then you can call them with in your queries. What…

Continue Reading Key auto-rotation in Azure Key Vault (preview)

Enterprise applications SSO with custom manifest configuration

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 08/09/2021 0 Comments on Enterprise applications SSO with custom manifest configuration
Posted in Active Directory, ADFS, Azure, Azure AD, Certificates, Compliance, Identity, Security

Hi, Didn’t find an article about this, so I decided to gather the pieces and put them in one place. First little bit of background. You have Azure AD and  on-premises or cloud-based application that you want to allow SSO…

Continue Reading Enterprise applications SSO with custom manifest configuration

Lync/SfB Server: Event 41026, LS Data MCU after May 2017 .NET Framework update

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 14/09/2017 0 Comments on Lync/SfB Server: Event 41026, LS Data MCU after May 2017 .NET Framework update
Posted in Certificates, Lync, Onpremise, Powershell, Skype for Business, Windows Updates

Hi, Today a customer call me and said that they cannot connect to meeting. In the Blog below is the fix. https://blogs.technet.microsoft.com/uclobby/2017/05/24/lyncsfb-server-event-41026-ls-data-mcu-after-may-2017-net-framework-update/ And script that does this for You. https://gallery.technet.microsoft.com/LyncSfB-Server-Disable-EKU-dab6cb88

Continue Reading Lync/SfB Server: Event 41026, LS Data MCU after May 2017 .NET Framework update

After Cumulative Updates in Exchange 2013 ECP and OWA will be broken … sometimes?

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 04/09/2014 0 Comments on After Cumulative Updates in Exchange 2013 ECP and OWA will be broken … sometimes?
Posted in Certificates, Exchange

Mr. Exchange Server Pro Paul Cunningham wrote a guide for updating single servers and dag servers. http://exchangeserverpro.com/exchange-2013-installing-cumulative-updates/ After applying updates to Exchange 2013 environment. You will sometimes (yes not all the time) that EAC and OWA will break. Either displaying…

Continue Reading After Cumulative Updates in Exchange 2013 ECP and OWA will be broken … sometimes?

Renew CA-ROOT and crl lists to use with Forefront UAG Direct Access.

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 21/08/2014 0 Comments on Renew CA-ROOT and crl lists to use with Forefront UAG Direct Access.
Posted in Certificates, Direct Access, UAG

And hi again. Today a customer had problems with Forefront AUG Direct Access. Recently they had renewed CA-Root -certificate and then crl and delta crl -lists got renewed also with name ca-root(1).crl and ca-root(1)+.crl They are using a internal CA-Root…

Continue Reading Renew CA-ROOT and crl lists to use with Forefront UAG Direct Access.

How to migrate CA Root from server to another

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 09/05/2014 0 Comments on How to migrate CA Root from server to another
Posted in Certificates, Migrate

This article shows you exactly how to migrate CA Root to another server. The new server can be anything from 2008 to 2012 R2. In the Certification Authority snap-in, right-click the CA name, click All Tasks, and then click Back…

Continue Reading How to migrate CA Root from server to another