Posts by Mike Cooper

Learn How To Create Trusted X.509 Certificates on MacOS from Microsoft ADCS Creating trusted enterprise certificates on Apple’s MacOS has never been easy, but it can be. In the traditional process you have to create a private key, create a Certificate Signing Request (CSR), submit the CSR to a Certificate Authority (CA) such as Microsoft…

How to Detect Expiring Certificates Elephants and Other Hi-Tech Methods All X.509 digital certificates expire. It’s only a question of time. If you follow best practices then your end point certificates expire in two years or less.  Once a certificate is expired it is considered invalid and likely will cause some kind of service outage. …

Learn How To Automate JKS on Windows, Linux, Mac from Microsoft PKI Applications (especially Java applications) that use HTTPS (SSL/TLS) require X.509 certificates to be  provided typically in a Java Key Store (JKS) or PKCS#12 file. This post describes how you can automatically create certificates in JKS from a Microsoft PKI Certificate Authority or GlobalSign…

Learn How To Automate Certificate Creation in PKCS12 on Windows, Linux, Mac from Microsoft PKI Applications (especially Java applications) that use HTTPS (SSL/TLS) require X.509 certificates to be provided typically in a PKCS#12 (PKCS12, P12) file. This post describes how you can automatically create certificates in PKCS12 from a Microsoft PKI Certificate Authority or GlobalSign…

MS-WCCE Automated Solution for Linux Windows systems have long supported Microsoft Windows Client Certificate Enrollment (MS-WCCE) which provides automatic X.509 certificate deployment and renewal with Microsoft Active Directory Certificate Services (ADCS).  Linux systems have no MS-WCCE support or any other automated integration with ADCS.  This is a key reason we created CertAccord Enterprise. Much like…