Browser limitation detected

Facebook browser may limit features like the Menu. For the best experience, please tap (...) and choose 'Open in Browser'.

ITPro-Tips logo
Advertise
Photo by Wade Lambert / Unsplash
Mitigate PetitPotam in Active Directory Certificate Services

Mitigate PetitPotam in Active Directory Certificate Services

— 1 min read
Bastien Perez
Bastien Perez
💡
Please refer to the links at the bottom of this article for the most up-to-date links by Microsoft.

Uninstall ADCS web enrollment

A quick method is to uninstall the ADCS web enrollment (reboot required). After this, you can’t use https://yourserver.domain.com/certsrv

Uninstall-WindowsFeature ADCS-WebEnrollment

Then disable the web server IIS (check before if any websites/services rely on):

Uninstall-WindowsFeature Web-Server

Official mitigations by Microsoft

Windows
Share

Comments

data-mapping="pathname" data-strict="0" data-reactions-enabled="0" data-emit-metadata="0" data-input-position="top" data-theme="preferred_color_scheme" data-lang="en" data-loading="lazy" crossorigin="anonymous" async>
banner-Bastien Perez
Bastien Perez avatar

Freelance Microsoft 365 - Active Directory - Modern Workplace

France