You cannot enable the Microsoft .NET Framework 3.5 feature on Windows Server 2012 R2

I ran into a weird issue on a freshly installed fully patched Windows Server 2012 R2. I tried to enable the the .NET Framework 3.5 feature but kept getting failures that the source files could not be found from the … Continue reading →...

Posted in Microsoft | Tagged , , , | Leave a comment

Enable TLS 1.1 and TLS 1.2 as default secure protocol in WinHTTP

I recently ran into an issue where a legacy VB application was trying to connect outbound with TLS 1.0. The application was moved from a Windows 2003 server to Windows server 2012 which by default uses TLS 1.2 as its … Continue reading →...

Posted in Microsoft | Leave a comment

Sending an e-mail with PowerShell

This is really useful if you want to test if a server is able to send out an e-mail through SMTP. Or just want to schedule a task to send out an e-mail once a month, Here are the details: … Continue reading →...

Posted in Microsoft, Scripting | Leave a comment

List Active Users in Active Directory – PowerShell

I had to decommission a domain that was being used by a small number of users. I needed a list of all users that were still active on it. The below script will list all users that recently logged into … Continue reading →...

Posted in Scripting | Tagged | Leave a comment

Generating a Certificate request for a WebSite with OpenSSL

There are different ways to generate a certificate request for your site or blog. Below is an example how to create a certificate request with OpenSSL and how to convert it to a .pfx format so that it can be … Continue reading →...

Posted in Microsoft | Tagged , | Leave a comment

Implementing HTTP security Response Headers in IIS

I recently received a request from security to add security headers to a few sites that we host. Some were running on Windows 2012, Server 2008 and some on Server 2003. After some research I found that you can scan … Continue reading →...

Posted in Microsoft | Tagged , , , | Leave a comment

IIS 6 Remove “Server: Microsoft-IIS/6.0” from Response Headers

Here are quick steps how to remove the IIS6 header from a Windows Server 2003 running IIS 6. Your site may be exposing unnecessary information and security scanners in your workplace like qualys may flag it as a security risk. … Continue readi...

Posted in Microsoft | Tagged | Leave a comment

BIG-IP F5 Client SSL Profile to Accept TLS 1.0 and forward as TLS 1.2

The F5 can be configured to allow a TLS 1.0 connection and forward it as TLS 1.2 to servers behind the VIP. This is really useful if you have an application running on an older system like Windows 2003 that … Continue reading →...

Posted in Uncategorized | Leave a comment

Determine the TLS cipher suite used in a 3-Way SSL handshake

When using Microsoft Network Monitor 3.4 you can determine the cipher suite used in a 3-Way SSL handshake by inspecting the “Server Hello” frame. Specifically drill down to “TLSCipherSuites” section. Filter that shows you a 3-...

Posted in Networking | Tagged , | Leave a comment

Load balance an HTTPS web site with BIG-IP F5

I have configured an Active/Standby BIG-IP F5 pair in my other post, you can take a look at the network configuration there. This post will walk you through setting up a basic load balancer between two web servers in my … Continue reading &rar...

Posted in Networking | Tagged , , , , | Leave a comment