Clik here to view.
Clik here to view.
AD DS implementation: security best pratices
Nice white paper from MS: http://aka.ms/adbp
View ArticleClik here to view.
AD CS (PKI): implementation security best practices
Nice white paper from MS: http://aka.ms/securingpki
View ArticleClik here to view.
ADFS Authentication Failure (HTTP error 400) .. due To Token Size
Introduction 400 error is seen by the end user when trying to access a IIS web site that has Windows Authentication enabled. Not all users see this behavior. The user might be a member of several...
View ArticleClik here to view.
Remove Lingering Objects that cause AD Replication error 8606 etc.
How to remove AD lingering objects? http://blogs.technet.com/b/askds/archive/2014/09/15/remove-lingering-objects-that-cause-ad-replication-error-8606-and-friends.aspx
View ArticleClik here to view.
How to configure Event forwarding?
Introduction: Event forwarding (also called SUBSCRIPTIONS) is a mean to send Windows event log entries from source computers to a collector. A same computer can be a collector or a source. This...
View ArticleClik here to view.
Controlling Printers in Active Directory?
Print management step by step guide: http://technet.microsoft.com/en-us/library/cc753109%28v=ws.10%29.aspx How to use Group Policy settings to control printers in Active Directory:...
View ArticleClik here to view.
How printer pruner works?
Published printers disappears from AD! Symptom: I have a recurring problem that is strange. I have 90 published, network printers on a server that on occation will disappear from the Active Directory....
View ArticleClik here to view.
AD domain or forest functional level
http://technet.microsoft.com/en-us/library/understanding-active-directory-functional-levels(v=ws.10).aspx
View ArticleClik here to view.
Upgrade Domain Controllers to Windows Server 2012 R2 and Windows Server 2012
http://technet.microsoft.com/library/hh994618.aspx If you want to create access control based on claims and compound auhentication, you need to deploy Dynamic Access Control. This requires that you...
View ArticleClik here to view.
Azure Active Directory setup and prerequisites
Set up Windows Azure AD: http://blogs.technet.com/b/keithmayer/archive/2013/04/09/step-by-step-provisioning-windows-azure-active-directory-free-for-production-use.aspx Azure AD connect:...
View ArticleClik here to view.
How to use WUSA to install hotfixes
wusa <update>.msu /quiet /norestart /log example: wusa d:\hotfixes\Windows8.1-KB29456426.msu /quiet /norestart You can use the Windows Management Instrumentation Command-line (WMIC) to view the...
View ArticleClik here to view.
CredSSP
http://blogs.technet.com/b/heyscriptingguy/archive/2012/11/14/enable-powershell-quot-second-hop-quot-functionality-with-credssp.aspx Back in the Windows Vista days, we introduced a new security...
View ArticleClik here to view.
ADFS v2.1
ADFS deep dive planning and design: http://blogs.technet.com/b/askpfeplat/archive/2014/11/24/adfs-deep-dive-planning-and-design-considerations.aspx Main Portal:...
View ArticleClik here to view.
ADFS 3.0 (on W2k12 R2)
First impressions: http://blog.auth360.net/2013/09/13/first-impressions-ad-fs-and-windows-server-2012-r2-part-i/ ADFS overview: http://technet.microsoft.com/en-us/library/hh831502.aspx Technet videos:...
View ArticleClik here to view.
How to check AD LDS or AD DS replication ?
There are various ways to check Active Directory replication status. You can use command-line tools as well as GUI tools to check the replication status for one or all domain controllers in an Active...
View ArticleClik here to view.
DFS and DFS-R troubleshooting and resources
Hi folks, here are web resources to implement and troubleshoot MS DFS and MS DFS-R: DFS Replication in Windows Server 2012 R2 :...
View ArticleClik here to view.
How to disable DFS target or DFS namespace?
For maintenance reason you want to disable DFS target(s) or DFS namespace, to do that you can: To enable or disable referrals by using Windows PowerShell, use the Set-DfsnRootTarget –State or...
View ArticleClik here to view.
Windows Forensics: WinRM – who is connected to your computer?
Finding remote session connected to your computer? who is running a (hidden) remote PowerShell on your machine? Here’s a simple one-liner: Get-WSManInstance -ConnectionURI (‘http://{0}:5985/wsman’ -f...
View ArticleClik here to view.
AD DS things to check after dcpromo !
Things to check after dcpromo: 1) Check inbound and outbound AD replication: To determine this, execute: REPADMIN /SHOWREPL /REPSTO Make sure all last attempts are really recent, and at least within...
View Article