Enable Schannel logging

To enable logging for Secure Channel logging (Schannel), use the following guide. Add the following registry key: Set one of the following values: 0x0000 Do not log 0x0001 Log error messages 0x0002 Log warnings 0x0004 Log informational and success events When troubleshooting I like to set it to 0x0007 (0x0001 + 0x0002 + 0x0004). Reboot… Continue reading Enable Schannel logging

The Microsoft Root Certificate Program

A couple of days ago I had to deal with a situation where our vulnerability tool was complaining that the root certificate store wasn’t updated for a while. After doing some research it turned out that the update service for the Microsoft root certificate program was blocked. That in turn triggered me to dig into… Continue reading The Microsoft Root Certificate Program