Reset password by SYSTEM?
Hi Guys,Our customer has security issue now, some users have been reset password by SYSTEM account like below:---------------------Log Name: Security Source:...
View ArticleClik here to view.
File in use error on a map drive when moving or deleted folders
Dear all,I have a SERVER 2008 R on which I have configured different drive mapping.I have then create a group name MARKETTING_USERS where all people inside have full control of the Marketting mapping...
View ArticleActive Directory Certificate Services: deploy certificates for Android devices
Hi,I have my network configured already with AD Certificate Services to deploy certificate for Windows PCs. This deployment has been tested and it is fully working.I would like to add mobile devices to...
View ArticleWMI invokemethod unknown error returnvalue = 8
I am using WMI control to execute the BAT file on the remote server. If i make the user admin on server, it works fine.But if i add user to just \Root\CIMV2 with execute and remote enable permission,...
View ArticleHow to delete a SPN from a server who doesn't exist anymore
Hi I have an Event ID 4 on my DC ( krb_ap_err_modified ) When I check SPN I have one (MSSQLSvc/server.domain.fr:1433) on a server how doesn't exist since 1 year ago Is it possible to delete this SPN...
View ArticleCertificate issues after migration
hi all,we have recently migrated an international office into our domain in the UK. We have migrated user, group, computer and mailboxes using ADMT server.Certain users from their finance dept used to...
View ArticleServer 2012 hardening?
Hello,has anyone seen any DOD or similar server 2012 hardening templates? We are looking into bringing some 2012 web servers into production, but we need to harden first. Other than the security...
View ArticleWindows Firewall - Authorized Computers - not working
Applying rules to "File and Printer Sharing (Echo Request - ICMPv4-In)" ... File and Printer Sharing (Echo Request - ICMPv4-In) - Allowed Client 1: Ping successful...
View ArticleWindows Firewall - Allow Specific Computers Access to File Shares
This question has been asked, but never fully answered. So I'm going to bring it up again, and share my work-arounds, and why I can no longer use a work-aroundNecessity:I need to be able to allow...
View ArticlePKI AD CS, Exchange and Outlook
hello all !I have a problem to implement SMIME.I configured a Microsoft PKI (2008 R2) issuing certificates to users (one model for encrypt and one model to sign). Certificates are also published in AD...
View ArticleMS Windows Hardware Compatibility PKI certificate
My client has the MS Windows Hardware Compatibility PKI certificate, ser # 198b11d13f9a8ffe69a0, configured (Inhibited) in their certificate validation product (Axway Desktop Validator), even though...
View ArticleServer 2008 DNS server for specific user
Hello, Here is what I need to do:I would like to use different DNS server for external name resolution for specific user on my network. Right now we have a service with openDNS that allows me to filter...
View ArticleSmime and share letter box
Hello,How to Implement SMIME with sharedletter boxes?It is necessary togenerate a certificate and install it on all user profiles authorized to enter inthe letter box?thanks
View ArticleRegistry Audit Failures not generating in Security Log when using Advanced...
Hi All,I've come across an issue when trying to utilize the new Windows 2008 R2 audit function/s when auditing the registry for failure attempts.... basically, I've set up everything up as instructed...
View Articlehow to block wimax devices in AD network?
i'm designer/administrator for a network with 500 clients/users. here we use extreme/cisco (mostly 2960) switches & cisco (mostly 3750) routers... we have 3 DCs running server 2k8 (not R2 yet) ,...
View ArticleEFS Certificate manual renewal
Hi, we set up EFS in our domain (2008 r2) and use efs certificates installed on smartcards.The certificate are about to expire and we are trying to renew them with the same key pair, using a RA...
View ArticleRRAS VPN, Two factor auth using certs
We currenly use an old Cisco VPN device for our remote users and are now looking into a new VPN solution to support two factor authentication for compliance. Since we're a complete Microsoft shop we...
View ArticlePhysical Address Binding with Remote Desktop
Hi, i have a Remote desktop user . i want to bind static IP address with particular Mac Address of User System. so that user can connect remote desktop on specific system which mac address has been...
View ArticleCA request - Windows Server 2012 - Subject Alternate Name
Hi, On 2008 R2 SubCA I used .inf file to create certificates with SAN. I used the following extension: [Extensions] 2.5.29.17 = "{text}" _continue_ = "dns=name.domain.com$dns=othername" This does...
View ArticleCSP
Could anyone explain to me with which criteria is should be picking my CSP?I have read the following articles but nowhere does it say which CSP is best for what situation or...
View Article