Nick's questions

I recently had a intermediate certificate expire on my network. The sysadmins were able to push a GPO out to the Windows Servers with the new certificate chain and it restored Windows to Windows communication between servers without a reboot. However the Linux servers were still seeing the expired certificate chain when I ran

openssl s_client -connect intranet1.example.com:443

and were not able to successfully curl to the servers without ssl errors.

I tried restarting IIS and still presented the same problems. The only thing that corrected the intermediate certificate store for Linux was fully rebooting the Windows Servers.

It seems like Windows should not require a reboot to fix the certificate chain because Windows to Windows communication was restored without one. Is there something fundamentally different with how Linux and Windows validate certificate chains between each other and if they have had successful communication before they use those old certificate chains?

Any insight or recommended reading to understanding certificate chains between Linux and Windows would be appreciated.

Following Microsofts instructions for Enforcing HTTPS in ASP.NET Core and IIS 10 at https://docs.microsoft.com/en-us/aspnet/core/security/enforcing-ssl?view=aspnetcore-2.1&tabs=visual-studio

The recommended changes do not appear to have an affect on redirecting http:// navigation to https:// for my site. I see a lot of blog posts reference modifying the web.config file with the rewrite rules. Changing the web.config file is not mentioned in Microsoft's documentation.

I have added this environment variable to the server: ASPNETCORE_HTTPS_PORT 443 And it does not affect the redirection at all.

I have app.UseHttpsRedirection(); in my Startup.cs file.

Is the web.config modification the correct change to make for HTTP to HTTPS redirection?

I'm working for an engineer that takes about 500 pictures a month and uses Adobe Lightroom to manage them. He currently has about 2TBs of data that need to be backed up regularly. To setup a backup for him I was thinking about getting 6 1TB hard drives and then setting them up in a Software RAID 1 configuration with Ubuntu Server. Then his windows machine could regularly back up to the Ubuntu Server. But I dont know if this is the best or most effective method. Does anyone have any suggestions or methods to help me figure this out? Right now I think cost would be an issue for him with the 6 Hard drives we would probably order 8 just so we have two backups.

At work we want to migrate to Exchange online from our current setup of using rackspace hosted POP email. We have about 50 people planned for migration and want to minimize email downtime for them as much as possible. I have been reading Microsoft's provided documentation on migration but most of it is written for migration from a local exchange server. Does anyone have any experience in this migration process? I want to do some testing with my email account making sure it works but it seems like the tools only provide for an all or nothing on the migration.