Рњрѕр»с‡р°с‚ Р”рѕрјр° (molchat Doma) - Рўсѓрґрѕрѕ (sudno) -
He turned away from the world and laid back down on the bed. The song looped, the jagged guitar riff cutting through the static of his thoughts. The "Sudno"—the bedpan, the vessel, the end. He closed his eyes, letting the cold waves of the synthesizer wash over him until the room, the city, and the gray sky finally dissolved into the beat.
The radiator hissed, a pathetic attempt to fight the creeping frost. Egor stood up and walked to the mirror. His reflection was a ghost—pale skin, dark circles, eyes that had seen too many identical sunsets over the same concrete horizon.
He picked up a small cassette player and pressed play. The drum machine kicked in first—stiff, mechanical, relentless. Then came the bass, a deep, driving throb that felt like walking through thick mud. When the vocals drifted in, low and detached, they sounded like a man singing from the bottom of a well. He turned away from the world and laid back down on the bed
He reached for a glass of lukewarm tea, but his hand stopped. On the table lay a small, white pill and a copy of a poem by Boris Ryzhy. He knew the lines by heart now. Living is difficult and expensive, but dying is easy and free. The irony was the only thing that made him smile lately, a sharp, jagged twitch of the lips.
He looked at the rotary phone on the floor. It hadn’t rung in three weeks. He didn't expect it to. He closed his eyes, letting the cold waves
The music didn't make him feel better, but it made the emptiness feel like a place he could inhabit. It was the sound of the hallways he walked, the stale bread he ate, and the silence of the people he passed in the street.
The room was the color of a bruised sky. Egor sat on the edge of a bed that felt like it was made of damp cardboard. Above him, a single lightbulb flickered with the rhythm of a dying heart, casting long, jittery shadows against the peeling floral wallpaper. His reflection was a ghost—pale skin, dark circles,
He leaned his forehead against the cold glass of the window. Down below, a man in a heavy coat was trying to start an old Lada. The engine coughed, sputtered, and died. The man didn't curse or kick the tire. He just sat there, staring through the windshield at nothing. Egor understood.
Ben Whitmore
Simon Skotheimsvik
Sandy Zeng
Hello,
We followed your guide to the letter on a 2016 and 2019 server but we keep running into the problem that the SCEP application pool keeps crashing for no real reason. We already ruled out a mistake in the templates or wrong CA certs in the intermediate.
We can see the Cert requests arrive but IIS dies everytime we see this in the NDES log:
NDES COnnector:
Sending request to certificate registration point. NDESPlugin 18-4-2019 17:04:05 3036 (0x0BDC)
Event viewer just shows us that w3wp.exe has crashed and that the faulty module is ntdll.dll.
We’ve been banging our heads against this problem for a week now so we hope you have any idea where to look.
Regards,
Herman
Nick, your stuff is amazing as always! .NET 3.5 appears to be required, so may be worth mentioning somewhere since some installations will need to specify an alternate path for that.
Using your script, I was failing on “Attempting to install Windows feature: Web-Asp-Net” and it wasn’t until I manually added 3.5–specifying the alternate path to the Server installation media–that I could continue.
Appreciate you sharing your findings Matt.
Regards,
Nickolaj
Internalurl in the app proxy config should be https and not http.
Yes, you’re correct.
Regards,
Nickolaj
Does this work for Android for Work or Android Enterprise devices? I can’t find the certificate issued to the end mobile devices even – iOS?
Yes it works for all platforms you mention.
Regards,
Nickolaj
Hey Nickolay,
there are two mistakes in your two pictures showing the configuration of the AAP. In the internal URL field you have to write https instead of http, because of the later binding / requiring of SSL. Your other older posts showing this also with https configured.
Best regards and nice work!,
Philipp
I’ve wasted way too much time troubleshooting this before I checked the IIS log files and they showed port 80. After changing AAD Proxy to HTTPS everything works.
Great guide though!
It appears that the script is expecting to find only 1 client authentication certificate with the specified subject. Could you modify it to handle cases where there are multiple certificates with the same subject?
Hello – Is there a mistake with the steps regarding the client and server certificates? At first you emphasized the points of each type which in turn have different Extended Key Usages. Are you stating to use the same template that contains both types?
Hi Carlos,
Could you please reference the pieces that you’re talking about?
Regards,
Nickolaj
Awesome step by step guide, many thanks. As per usual the MS TechNet lacks a lot of steps and inside information. Regarding the two certs, can they also be 3rd party and trusted certs (wildcard) ?