Active Directory

Active Directory: trust relationship between two forests / domains

Presentation The trust relationship between two Active Directory drill bits / domains is a trusted link that allows authenticated users to access resources in another domain. An approval relationship may be: Unidirectional: access to resources is only available in one direction (A) -> (B). Bidirectional: access to resources is available in both directions (A) <-> …

Active Directory: trust relationship between two forests / domains Read More »

End

GPO hide drive C

Presentation In this tutorial, we’ll see how to hide drive C using Group Policy (GPO). This GPO is often used to hide drives on RDS farms. Hiding the reader does not prevent access, it is possible to access the reader by the browser directly entering his address. If you want to apply the GPO to …

GPO hide drive C Read More »

Lecteur C masqué

LAPS – Securing Local Administrator Accounts

LAPS (Local Administrator Password Solution) is a free solution provided by Microsoft that allows the security of workstations. LAPS allows for each computer in OR to randomly generate a password for the local Administrator account and store it in an Active Directory attribute (ms-Mcs-AdmPwd). It ‘relies on the SID of the account which is structured …

LAPS – Securing Local Administrator Accounts Read More »

Active Directory: Migrate SYSVOL Folder from FRS to DFSR

Presentation Since Windows Server 2008 and its 2008 domain functional level, replication of the SYSVOL folder is supported by DFSR, before it was done by FRS. If your domain controllers are running Windows 2012R2, it is advisable to use DFSR for the SYSVOL folder. Since Windows Server 2016 (build 1709), it is no longer possible …

Active Directory: Migrate SYSVOL Folder from FRS to DFSR Read More »

Active Directory : increase the functional level of the domain and the forest

Presentation The functional level of the domain and forest corresponds to the “version” of your Active Directory environment and allows access to more or fewer features depending on the level of each. Mainly this level change occurs when upgrading to Windows when replacing / migrating domain controllers. The version change may also be necessary for …

Active Directory : increase the functional level of the domain and the forest Read More »

Setting up a read-only domain controller – RODC

Introduction In this article, we are going to have how to set up a read-only domain controller (RODC). This type of controller, as the name suggests, is read-only, so it can not change user attributes or even add objects. There are several implementation scenarios for this type of domain controller, here are two that I …

Setting up a read-only domain controller – RODC Read More »

Scroll to Top