LAPS – Securing Local Administrator Accounts

LAPS (Local Administrator Password Solution) is a free solution provided by Microsoft that allows the security of workstations. LAPS allows for each computer in OR to randomly generate a password for the local Administrator account and store it in an Active Directory attribute (ms-Mcs-AdmPwd). It ‘relies on the SID of the account which is structured …

Read moreLAPS – Securing Local Administrator Accounts

Active Directory: Migrate SYSVOL Folder from FRS to DFSR

Presentation Since Windows Server 2008 and its 2008 domain functional level, replication of the SYSVOL folder is supported by DFSR, before it was done by FRS. If your domain controllers are running Windows 2012R2, it is advisable to use DFSR for the SYSVOL folder. Since Windows Server 2016 (build 1709), it is no longer possible …

Read moreActive Directory: Migrate SYSVOL Folder from FRS to DFSR

Active Directory : increase the functional level of the domain and the forest

Presentation The functional level of the domain and forest corresponds to the “version” of your Active Directory environment and allows access to more or fewer features depending on the level of each. Mainly this level change occurs when upgrading to Windows when replacing / migrating domain controllers. The version change may also be necessary for …

Read moreActive Directory : increase the functional level of the domain and the forest

Apply a GPO to a group

Introduction In this article, I will explain how to apply a Group Policy (GPO) to an Active Directory group that contains multiple users. The tutorial also applies in case you want to apply the policy to a particular user. Prerequisites Have created the Active Directory group Having created the strategy The policy must be correctly …

Read moreApply a GPO to a group