GPO

Active Directory: Restore default GPOs Default Domain Policy / Default Domain Controller Policy

In this tutorial, we will see how to restore GPO Default Domain Policy / Default Domain Controller Policy to default. On domain controllers, a DCGPOFIX command line tool is available to restore the 2 default policies. Before proceeding with the restoration of the policies, I advise you to make a backup of this one before. …

Active Directory: Restore default GPOs Default Domain Policy / Default Domain Controller Policy Read More »

AppLocker : configuration in an Active Directory environment

Presentation In this tutorial, we will see how to configure AppLocker in an Active Directory environment using group policies. AppLocker is a Windows feature that is similar to a firewall at the application level. AppLocker allows you to control the applications running on computers. AppLocker is able to act on: Executables (.exe). Windows Installer (msi, …

AppLocker : configuration in an Active Directory environment Read More »

Bitlocker : store recovery password in Active Directory

Presentation In this tutorial, we will see how to store the Bitlocker recovery password in the Active Directrory. The recovery password is requested when the user forgets his pin code or when he wishes to access the hard disk on another computer when the TPM module has been used. Viewing passwords is done using the …

Bitlocker : store recovery password in Active Directory Read More »

GPO : configure automatic session locking

Presentation In this tutorial, we will see how to activate automatic session locking after a period of inactivity. This group policy increases the level of security, because many users do not lock their session when they leave their workstation. The parameters that we will configure apply to Users. Activate automatic session lock From a domain …

GPO : configure automatic session locking Read More »

Overview of the strategy

GPO Login Script

Presentation In this tutorial, we will see how to set up a GPO that will execute a logon script. Logon scripts are usually in batch or vbs format, it is also possible to run PowerShell scripts. The use of script in PowerShell requires to authorize the use of remote script (set-executionpolicy), it is also necessary …

GPO Login Script Read More »

GPO: Enabling and Configuring WinRM – Remote Management

Presentation In this tutorial, we will have how to enable and configure remote management (WinRM – Windows Remote Management) using a Group Policy (GPO). On Windows Server, remote access (WinRM) is enabled by default, which is not the case for client versions of Windows (10). WinRM allows you to administer the computer using: Server Manager …

GPO: Enabling and Configuring WinRM – Remote Management Read More »

GPO: Folder Redirection – Advanced Settings

Introduction In a previous tutorial: GPO: User Folder Redirection, I explained how to redirect user folders using Group Policy in a simple way. In this article, we are going to have how to set up a folder redirection using the advanced settings. Advanced settings allow using a policy, to write user folders based on an …

GPO: Folder Redirection – Advanced Settings Read More »

GPO: Configure SSO on RDS Connections

Presentation In this article, we’ll see how to set up Single Sign-on (SSO) on Remote Desktop (RDS) connections using a GPO. This solution eliminates the need for users to re-enter their login to connect to an RDS server or RemoteApp connections. Policy Configuration – GPO Ouvrir la console de Gestion des stratégies de groupes, sélectionner …

GPO: Configure SSO on RDS Connections Read More »

Résumé de la GPO
Scroll to Top