Enable Schannel logging

To enable logging for Secure Channel logging (Schannel), use the following guide. Add the following registry key: Set one of the following values: 0x0000 Do not log 0x0001 Log error messages 0x0002 Log warnings 0x0004 Log informational and success events When troubleshooting I like to set it to 0x0007 (0x0001 + 0x0002 + 0x0004). Reboot … Continue reading Enable Schannel logging

The Microsoft Root Certificate Program

A couple of days ago I had to deal with a situation where our vulnerability tool was complaining that the root certificate store wasn’t updated for a while. After doing some research it turned out that the update service for the Microsoft root certificate program was blocked. That in turn triggered me to dig into … Continue reading The Microsoft Root Certificate Program