2018年4月30日 星期一

[MSSQL] Create a request certification for MSSQL

產生需求憑證給MSSQL’s SSL:

;—————– request.inf —————–
[Version]
Signature="$Windows NT$"
[NewRequest]
Subject = "CN=FQDN" ; replace with the FQDN of the DC
KeySpec = 1
KeyLength = 2048
; Can be 1024, 2048, 4096, 8192, or 16384.
; Larger key sizes are more secure, but have
; a greater impact on performance.
Exportable = FALSE
MachineKeySet = TRUE
SMIME = False
PrivateKeyArchive = FALSE
UserProtected = FALSE
UseExistingKeySet = FALSE
ProviderName = "Microsoft RSA SChannel Cryptographic Provider"
ProviderType = 12
RequestType = PKCS10
KeyUsage = 0xa0
[EnhancedKeyUsageExtension]
OID=1.3.6.1.5.5.7.3.1 ; this is for Server Authentication
;———————————————–
[Extensions]
    2.5.29.17 = "{text}"
    _continue_ = "DNS=name1&"
    _continue_ = "DNS=name2"

;—————– END Of request.inf —————–

c:\>certreq –new request.inf output_file_for_CAtoSign.req

Then you can sign this .req, and import it to server that generates it. And you can find out this certificate for MSSQL SSL Encryption.

張貼者: 沒有留言:
標籤:

2018年4月24日 星期二

Sophos AutoUpdate Failed and to change Connection Address in iconn.cfg

Sophos On Platform WIN_81_SVR_X64 (Windows 2012 Standard R2)

C:\ProgramData\Sophos\AutoUpdate\Config

C:\ProgramData\Sophos\AutoUpdate\Config\iconn.cfg  -  This file contains the configuration of AutoUpdate in respect of the update locations and accounts used.

Looks like

;****************************************************************************
;
; iconn.cfg
;
; Please do not edit this text file.
;
;****************************************************************************

[PPI.WebConfig_Primary]
AllowLocalConfig = 0
AutoDialTimeout =
LocalPath =
DownloadGranularity =
ConnectionAddress = http://{ADDR}/sophos/CIDs/S000/SAVSCFXP/
UserName = xxx
UserPassword = xxx
ConnectionType = HTTP
UseSophos = 0
UseHttps = 0
UseDelta = 0
AutoDial = 0
BandwidthLimit = 0

[PPI.ProxyConfig_Primary]
AllowLocalConfig = 0
ProxyPortNumber = 0
ProxyType = 0

[PPI.WebConfig_Secondary]
AllowLocalConfig = 0
AutoDialTimeout =
LocalPath =
DownloadGranularity =
ConnectionAddress = http://es-web.sophos.com/update/
UseSophos = 1
UseHttps = 0
UseDelta = 0
PortNumber =
UserName = xxx
UserPassword = xxx
ConnectionType = HTTP
AutoDial = 0
BandwidthLimit = 0

[PPI.ProxyConfig_Secondary]
AllowLocalConfig = 0
ProxyPortNumber = 0
ProxyType = 0

Refer:

https://community.sophos.com/kb/en-us/36262

張貼者: 沒有留言:
標籤:
訂閱: 文章 (Atom)