I am periodically asked about a “version 2.0” of my post on “LINUX Certificate Enrollment and Automated Renewal Using NDES”. I continue to watch the development of CERTMONGER. While promising, the project development hasn’t gotten to a point exactly meets needs outlined in my example scenario. Rather than do a 2.0 post for now, I…
Tag: SCEP
NDES EncryptedPassword
While doing some NDES work in my lab I found that my SCEP Administrative site http://subca.contoso.corp/certsrv/mscep_admin/ was generating a HTTP 500 error. The application event log contained the following two entries following any unsuccessful attempt to reach the SCEP admin site: Log Name: Application Source: Microsoft-Windows-NetworkDeviceEnrollmentService Event ID: 2 Level: Error Description: The Network Device…
LINUX Certificate Enrollment and Automated Renewal Using NDES (Updated)
(APR 2018) NDES continues to evolve (slowly) as everyone embraces the deprecation of SHA-1. This post has been updated to reflect those changes and the impact on NDES. Note the difference between the cryptography used in NDES / SCEP communications versus the cryptography in the certificates provided through NDES / SCEP. For more detail on…