Shawn Harry | Shawn Harry
1
archive,paged,author,author-admin,author-1,paged-2,author-paged-2,ajax_fade,page_not_loaded,,qode_grid_1300,qode_popup_menu_push_text_top,qode-content-sidebar-responsive,qode-theme-ver-10.0,wpb-js-composer js-comp-ver-4.12.1,vc_responsive

Author: Shawn Harry

Symptom: The Front End service would not start due to incorrectly placed certificates in the Trusted Root container. This script https://gallery.technet.microsoft.com/LyncSkype4B-Certificate-81944851 was used to check the certificate containers and two root certificates were found incorrectly placed in the Trusted Root container. Example output:- Resolution: The below registry...

To resolve the Poodle vulnerability and harden the Edge Server download and install the following tool from Nartac Software https://www.nartac.com/Products/IISCrypto/Download After installing select ‘best practices’ and apply the suggested fixes. The keys will be written to the following path: “HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control \SecurityProviders\SCHANNEL\Protocols” Browse to Qualys SSLs checker and scan the Edge...

Summary: After initiating a successful failover of the Central Management Store and Pool failback of the CMS failed. The topology reported the CMS as being homed on the primary pool, but the Get-CsManagementStoreReplicationStatus –CentralManagementStoreStatus cmdlet reported the CMS as still being on the backup pool....

SfB OpenOTP MFA integration using Passive Authentication The following is supplemental to the WebADM Install Guide only. Server specification Ubuntu 12.04 was used for the integration using a Basic_A1 (1 core, 1.75 GB memory) VM. The server was installed manually to support installation of OpenOTP in Azure. Otherwise...