Active Directory: configuring dynamic access control – DAC

In this tutorial, I suggest you discover the dynamic access control available on Windows Server in an Active Directory environment. Before getting to the heart of the matter, I will introduce you to dynamic access control also called DAC (Dynamic Access Control). DAC adds additional control over NTFS access rights which allows rights to be …

Read moreActive Directory: configuring dynamic access control – DAC

Active Directory: Restore default GPOs Default Domain Policy / Default Domain Controller Policy

In this tutorial, we will see how to restore GPO Default Domain Policy / Default Domain Controller Policy to default. On domain controllers, a DCGPOFIX command line tool is available to restore the 2 default policies. Before proceeding with the restoration of the policies, I advise you to make a backup of this one before. …

Read moreActive Directory: Restore default GPOs Default Domain Policy / Default Domain Controller Policy

AppLocker : configuration in an Active Directory environment

Presentation In this tutorial, we will see how to configure AppLocker in an Active Directory environment using group policies. AppLocker is a Windows feature that is similar to a firewall at the application level. AppLocker allows you to control the applications running on computers. AppLocker is able to act on: Executables (.exe). Windows Installer (msi, …

Read moreAppLocker : configuration in an Active Directory environment

Bitlocker : store recovery password in Active Directory

Presentation In this tutorial, we will see how to store the Bitlocker recovery password in the Active Directrory. The recovery password is requested when the user forgets his pin code or when he wishes to access the hard disk on another computer when the TPM module has been used. Viewing passwords is done using the …

Read moreBitlocker : store recovery password in Active Directory