Last days I got more warnings from EMET

Best,

Last days I got more and more warnings from EMET like this:

EMET detected that the SSL certificate for "twitter.com" is not trusted by the rule "TwitterCA" associated with the domain "twitter.com"

EMET detected that the SSL certificate for "login.yahoo.com" is not trusted by the rule "YahooCA" associated with the domain "login.yahoo.com"

EMET detected that the SSL certificate for "iecvlist.microsoft.com" is not trusted by the rule "MSLiveCA" associated with the domain "login.live.com"

EMET detected that the SSL certificate for "iecvlist.microsoft.com" is not trusted by the rule "MSLiveCA" associated with the domain "login.live.com"

Can anyone tell me what to do with this? I have EMET version 4.1.5064.16886

Thanks for helping me out.

Oscar

September 18th, 2014 11:14pm

Based on the version number you still have EMET 4.1 installed. By the end of April 2014 Microsoft released EMET 4.1 Update 1 (version 4.1.5228.513) with several improvements and an updated Certificate Trust Pinning rules.

For more information see:

Continuing with Our Community Driven, Customer Focused Approach for EMET
An update is available for the Enhanced Mitigation Experience Toolkit 4.1: April 2014

You can download the new version from Enhanced Mitigation Experience Toolkit 4.1 Update 1. If you don't want to install this new version you can also download and run Microsoft Fix it 51012 which only updates the Certificate Trust Pinning rules.

Of course you can also download and install the latest version of EMET which is version 5.0. You can read more about the release of this version on this page Announcing EMET 5.0 or download the 'Enhanced Mitigation Experience Toolkit 5.0' trough this link: http://www.microsoft.com/en-us/download/details.aspx?id=43714

Free Windows Admin Tool Kit Click here and download it now
September 19th, 2014 12:19am

Thank you for your reply.

 I will update EMET.

September 19th, 2014 12:32am

Sorry to bring up an old thread but very similar to the author, I am using 5.1 and I am still getting the errors:

EMET detected that the SSL certificate "iecvlist.microsoft.com" is not trusted by the rule "MSLiveCA" associated with the domain "login.live.ca"

EMET detected that the SSL certificate "r20swj13mr.microsoft.com" is not trusted by the rule "MSLiveCA" associated with the domain "login.live.ca"

It seems to be brought up almost at random while using IE and browsing internal sites such as our Trend management console or a public site like microsoft.com... How exactly do I add the above certificate so that it stops nagging about it?

Thanks!

Eric


Free Windows Admin Tool Kit Click here and download it now
January 27th, 2015 6:09pm

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics