Active Directory

AppLocker : configuration in an Active Directory environment

Presentation In this tutorial, we will see how to configure AppLocker in an Active Directory environment using group policies. AppLocker is a Windows feature that is similar to a firewall at the application level. AppLocker allows you to control the applications running on computers. AppLocker is able to act on: Executables (.exe). Windows Installer (msi, …

AppLocker : configuration in an Active Directory environment Read More »

Bitlocker : store recovery password in Active Directory

Presentation In this tutorial, we will see how to store the Bitlocker recovery password in the Active Directrory. The recovery password is requested when the user forgets his pin code or when he wishes to access the hard disk on another computer when the TPM module has been used. Viewing passwords is done using the …

Bitlocker : store recovery password in Active Directory Read More »

GPO : configure automatic session locking

Presentation In this tutorial, we will see how to activate automatic session locking after a period of inactivity. This group policy increases the level of security, because many users do not lock their session when they leave their workstation. The parameters that we will configure apply to Users. Activate automatic session lock From a domain …

GPO : configure automatic session locking Read More »

Overview of the strategy

GPO: Central store

Presentation of the central store The central store makes it possible to share and synchronize all of the Group Policy Definition (ADMX) files on all of the domain controllers by relying on the SYSVOL folder. By default the ADMX files are in the C:\Windows\PolicyDefinitions folder which is specific to each domain controller. It is also …

GPO: Central store Read More »

Vérification via l'éditeur de l'utilisation du magasin central

Decommission Exchange 2010

Presentation This tutorial follows Exchange migration to Office 365 – minimum hybrid configuration for uninstalling (decommissioning) of Exchange in the local environment Microsoft recommends not to decommission the local Exchange, by doing this you can no longer administer with an interface mailboxes including aliases. This tutorial can also serve as a guide for uninstalling after …

Decommission Exchange 2010 Read More »

Décocher les rôles

Active Directory: authentication policy

Presentation of authentication policies With Windows Server 2012R2 and the new ADAC (Active Directory Administration Center) administration console, Microsoft has added authentication policies that provide an additional layer of security. In the summary of authentication policies will allow or not to allow a user logs on to a desktop or server, or vice versa control …

Active Directory: authentication policy Read More »

GPO Login Script

Presentation In this tutorial, we will see how to set up a GPO that will execute a logon script. Logon scripts are usually in batch or vbs format, it is also possible to run PowerShell scripts. The use of script in PowerShell requires to authorize the use of remote script (set-executionpolicy), it is also necessary …

GPO Login Script Read More »

Scroll to Top