In August 2018, Microsoft issued a security advisory ADV190023 Microsoft Guidance for Enabling LDAP Channel Binding and LDAP Signing about unsigned LDAP communication blocking in Active Directory starting with March 2020. A quick poll identified that not all customers are aware about upcoming changes or have prepared to them. What is LDAP Binding? LDAP binding…

Read More

In this post, I will explain how to create custom certificate trust list (CTL) using PowerShell PKI (PSPKI) module. What is CTL? In short, CTL is a Microsoft open format of portable certificate container based on PKCS#7 format. Although, PKCS#7 already is a simple container for certificate, CTL provides several useful features: Name each list…

Read More

Hello everyone, we are announcing a public availability of PowerShell PKI module v3.5 New Year Edition. New version is a big work around various aspects of PKCS#7 format and messages. Here is a summary of what we’ve done: Time-Stamp Protocol client As a part of improved support of PKCS#7 messages, we added a .NET-compatible RFC…

Read More

Hello world! I’m glad to announce a new version of ASN.1 Editor. I called this version as Christmas Edition, because it’s the end of the year. This version includes not only bug fixes, but some features. Changes in UI look When I shared screenshot of ASN tree view, not all people figured what numbers next…

Read More