PKI Blog

Rex Wheeler

Rex Wheeler

Recent Posts

How to Manage Application Certificates with Docker

Posted by Rex Wheeler on Aug 13, 2018 3:42:07 PM

Clients commonly ask us how to use our PKI and digital certificate operations management platform, CMS, to manage application certificates in a DevOps environment. They are “containerizing” their applications with Docker and want to manage certificates within Docker containers.

Read More

Topics: DevOps, Docker Containers, manage application certificates, Infrastructure as Code (IaC)

PKI and HSMs: 'Kernel memory leaking' Intel processor design flaw

Posted by Rex Wheeler on Jan 3, 2018 9:28:16 PM

At CSS we are all about helping our customers manage their Public Key Infrastructure (PKI). We always recommend that customers store their important private keys using Hardware Security Modules (HSMs) because without an HSM it is hard to protect your keys from malware or misconfigured security in your operating system. It turns out there is another good reason that due to extreme rarity is not considered often: CPU flaws.

Read More

Topics: PKI HSM, HSM, Intel, Kernel memory leaking

Simplifying FIM Service Migration

Posted by Rex Wheeler on Apr 30, 2014 2:57:26 PM

If you have spent time with FIM you know, and if you have not, you will soon learn that migrating a FIM Service configuration from one environment to another can be very difficult.

Read More

Topics: GitHub FimDelta, IT Security, Microsoft Security Partner, GitHub, FIM, FIM Service Migration, FimDelta, FIM Delta Tool, Identity Management, FIM Service migration process, Migration, Microsoft Forefront Identity Manager, Microsoft FIM, PowerShell migration, Blog, PowerShell, FIM Service

Delegating Exchange provisioning with FIM

Posted by Rex Wheeler on Apr 7, 2011 4:00:47 AM

I thought I would kick off my entries in our new company blog with a description of the project that lead to CSS winning Microsoft’s prestigious “2010 Core Infrastructure Solutions, Identity & Security Partner of the Year.”

The project involved an interesting use of the Forefront Identity Manager (FIM) synchronization engine to provide delegated Exchange provisioning. My hope in describing this project is to provide an example and maybe inspiration as to what you can use FIM to accomplish.

Read More

Topics: Microsoft Active Directory AD, Microsoft Security Partner, Microsoft Exchange, Identity Management, Microsoft Forefront Identity Manager, Microsoft FIM, Exchange Provisioning, Blog

Recent Posts

Posts by Topic

see all

Subscribe to Email Updates

Want to Learn more about CSS?