Get Your Site A Certificate Now

If you didn’t already know Google Chrome (release: Chrome 68) in July 2018 will start to make all HTTP sites as ‘Not Secure’ – think on that for a moment. From day one my blog has been running on HTTPS – it might seem silly to run a blog over HTTPS, especially when Let’s Encrypt … Read more

HPE iLO 5 TLS SSL Settings

People who work with me or have done in the past will know I’m really keen on ensuring TLS/SSL settings and certificates are properly implemented wherever possible. In this post I’m going to cover some of the nice features in Hewlett Packard Enterprise (HPE) latest iLO. If you’re not familiar, HPE provide IPMI functionality via … Read more

Replace Synology SSL Certificate with pfSense CA Issued

I recently made an addition to my setup in the form of a Synology DS716+ii NAS – I’ll probably write some more posts about it in the near future but for now I want to cover how I replaced the default SSL/TLS certificate it uses with one issued by my pfSense system. My home computer … Read more

Trend Micro ScanMail Virtual Analyzer Connection Troubleshooting

I’ve been working on our Trend Micro Deep Discovery Analyzer (DDAN in Trend parlance) and today I finally finished off the virtual image which it will use to sandbox suspicious files/URLs. Having finished that work I figured I’d take a look at integrating our Trend Micro ScanMail for Exchange (SMEX) systems so that e-mails can … Read more

VMware vCenter Certificate Management Default Values

If you have ever replaced VMware vCenter server certificates you will know that there are default values for common SSL/TLS certificate attributes, for example country code and organisation name. By default VMware have their own details for these attributes as shown below – Country – US E-mail – [email protected] Locality – Palo Alto Organisational Unit … Read more

Supermicro IPMI SSL TLS Certificate Replacement

I’ve been meaning to replace the SSL/TLS certificates on my Supermicro servers IPMI (Intelligent Provisioning Management Interface) consoles. Now that I’ve upgraded the firmware on both units I think it’s about time I sorted the certificates as well. This is something I did at work some time ago and then handed over to our team … Read more

New Trend Micro Smart Protection Server Certificate Replacement Option

I finally got round to uploading my instructions on how to replace the self-signed SSL/TLS certificate on Trend Micro Smart Protection Servers (SPS) and now they go and create a menu option to make it easy for everyone to do! Well to be fair the number of requests I got asking me to upload my … Read more

VMware vRealize Log Insight SSL Available To All

VMware Log Insight (vRealize Log Insight: Intelligent Log Management & Analytics) is a nice product and it’s certainly been useful in my environment. There was however one major issue I had with the product, you had to upgrade your license to gain the ability to replace the default self-signed SSL/TLS certificate on the web interface. … Read more

Trend Micro Smart Protection Server SSL TLS Certificate Replacement

If you run Trend Micro business products you should really consider running a Smart Protection Server (SPS) appliance in your datacenter. In a previous post I stepped through the process of deploying an SPS appliance in a VMware environment. It is possible to deploy to Hyper-V as well so don’t worry if you aren’t running … Read more

HPE C7000 Blade Chassis SSL Certificate Replacement

The SSL/TLS certificates on my HPE (Hewlett Packard Enterprise) C7000 blade chassis expired this week and therefore required replacing. I’m a strong believer in always replacing certificates with valid ones generated by a certificate authority (CA). In my mind there isn’t much excuse in a business to not have an internal CA for this sort … Read more