If you’re used to connecting to Windows servers, you may have noticed that Server Manager opens every time, although handy, this tends to “slow” the login and is intrusive especially when you don’t need it. I will explain how to disable its automatic opening. If you have already closed it, open the server manager. Click …
In this tutorial, we will address a security point on an Active Directory environment, which is the domain joining of computers. What you need to know (some administrators don’t know this), all domain users can join a computer to a domain, they can even join up to 10 computers. Domain administrators have no limit as …
In this tutorial, I will explain how to force DNS registration of computers by Group Policy (GPO) in an Active Directory environment. Maintaining a clean, up-to-date DNS (Active Directory) zone is not easy, especially with dynamic computer registration. The first step is the activation of automatic cleaning, but it happens that once this is activated, …
After seeing how to install and configure Nginx as a reverse proxy and harden security with Crowdsec, I will explain in this tutorial how to generate a Let’s Encrypt certificate. As a reminder, Let’s Encrypt is a free certification authority, which allows you to obtain SSL certificates for free. If you want to generate SSL …
In this tutorial, I will explain how to extract the certificate and the private key from a certificate in PFX format with OpenSSL. The easiest way to use OpenSSL is to use a Linux computer. 1. Copy the PFX file to your computer where OpenSSL is installed. 2. The first step will be to extract …
In this tutorial, I will explain how by Group Policy (GPO) in an Active Directory environment, block the launch of programs and prevent the installation of certain software with the software restriction policy. By default, if the users are not administrator (local) of the computer, it is not normally possible to install programs, on the …
In this tutorial dedicated to Active Directory and security, I will give you some tips to harden the level of security in order to be less vulnerable to attacks. The different configuration points, which will be discussed, simply allow attacks to be made more difficult and longer internally, in no way will they guarantee that …
In this tutorial, I will walk you through how to disable SMBv1 support add-on using Group Policy. To disable full SMBv1 support, you must act on the two SMB components which are: The server who is the one who shares The client that allows the use of shared resources. Disabling by group policy is done …
In this tutorial, we will see how to add drivers in MDT, so that they are installed when deploying Windows. Before importing the drivers into the MDT console, I advise you to create a folder per model. When adding drivers, you must also regenerate the boot images so that the drivers are also integrated into …
Dans ce tutoriel, nous allons aborder l’installation d’Office lors du déploiement de Windows. If you are not familiar with application deployment with MDT, I invite you to read the following article first: MDT installation during applications during Windows deployment. Why use MDT to install Office? When adding the application in the console, you have the …