GPO: Managing Windows Firewall Rules

firewall rule added

Presentation In this tutorial, we will see how to add rules to the Windows Firewall using Group Policy. For information, the Windows Firewall has been implemented in the Windows operating system with service pack 2 (SP2) of Windows XP. It is now part of the system and some functionalities like DirectAccess requires that it be …

Read more



Enterprise certification authority: installation and configuration with Windows Server

In this tutorial, I will explain how to set up an enterprise CA that is linked to an Active Directory, unlike the stand-alone CA. This type of CA allows you to automate certificate generation with direct submission to the CA. Automatically issue computer and user certificates to, for example, secure VPN access with Windows NPS. …

Read more



Active Directory: Joining a Computer to a Domain at the Command Line

NETDOM JOIN

Introduction The Active Directory domain join of a computer can be done using either the GUI or using command line and PowerShell. In this tutorial, I will explain how to join a computer to a domain using the various command lines that are: NETDOM DJOIN for off-line joining Add-Computer in PowerShell It is also possible …

Read more



ADMT: Active Directory Domain Migration Tool

ADMT

ADMT (Active Directory Migration Tool) is a free Microsoft tool that allows the migration of objects (Users, Computers, and Groups) between two Active Directory domains. Some examples of using ADMT: Prerequisites The migration account will be configured during the first object migration that will be done between the two domains. In the tutorial, I used …

Read more



Azure AD Connect: Installing and configuring synchronization

Utilisateurs synchronisés dans Office 365

Azure AD Connect overview In this article, I’ll walk you through how to install and configure Azure AD Connect. This solution allows you to synchronize your local directory (AD) to the Azure platform and use the same user accounts. The installation of the Azure AD Connect client must be done on a domain member server, …

Read more



Active Directory: trust relationship between two forests / domains

End

Presentation The trust relationship between two Active Directory drill bits / domains is a trusted link that allows authenticated users to access resources in another domain. An approval relationship may be: Unidirectional: access to resources is only available in one direction (A) -> (B). Bidirectional: access to resources is available in both directions (A) <-> …

Read more



LAPS – Securing Local Administrator Accounts

Wizard install

LAPS (Local Administrator Password Solution) is a free solution provided by Microsoft that allows the security of workstations. LAPS allows for each computer in OR to randomly generate a password for the local Administrator account and store it in an Active Directory attribute (ms-Mcs-AdmPwd). It ‘relies on the SID of the account which is structured …

Read more



Active Directory: Migrate SYSVOL Folder from FRS to DFSR

Since Windows Server 2008 and its 2008 domain functional level, replication of the SYSVOL folder is supported by DFSR, before it was done by FRS. If your domain controllers are running Windows 2012R2, it is advisable to use DFSR for the SYSVOL folder. Since Windows Server 2016 (build 1709), it is no longer possible to …

Read more



Active Directory : increase the functional level of the domain and the forest

The functional level of the domain and forest corresponds to the “version” of your Active Directory environment and allows access to more or fewer features depending on the level of each. Mainly this level change occurs when upgrading to Windows when replacing / migrating domain controllers. The version change may also be necessary for the …

Read more