There are several ways for Windows PCs to join an Active Directory domain. These include the interactive method via...
ENow Active Directory Monitoring & Reporting provides quick, granular visibility into your Active Directory environment so IT pros can...
Auditing and restricting NTLM authentication using Group Policy
active directory, identity, security, group policy 0
NTLM is an insecure authentication protocol that is still found in many environments. Using Group Policy and effective logging,...
Retrieve local admin passwords from Active Directory with LAPS WebUI
docker, security, active directory, password 2
Microsoft LAPS is a solution for centrally managing passwords for local administrator accounts in an Active Directory domain. It...
When companies use OneDrive, they usually want to control its use via Group Policy to prevent data loss or...
Set Chrome, Firefox and Edge as default mail client (mailto handlers)
email, active directory, group policy, browser 1
To set Chrome, Edge, or Firefox as default mail client for mailto links (mailto handlers) requires several steps. In...
Restrict logon time for Active Directory users
security, active directory, deployment, group policy 0
You can restrict logon times for Active Directory users for specific days or hours. This can be useful to...
By default, the Windows logon screen displays some information about the current user as well as accounts that have...
Prepare AD synchronization with Azure Active Directory using IdFix
microsoft 365, azure, active directory 0
Many organizations are migrating their on-premises email to Microsoft 365. One of the necessary steps is synchronizing your local...
Let's look at the general steps required to remove an old Windows certificate authority without affecting previously issued certificates.
In a previous post, we discussed how to quickly unlock AD accounts with PowerShell. However, the main problem admins...
IT admins or helpdesk teams often use graphical tools, such as Active Directory Users and Computers (ADUC), to unlock...
If you take a look at the group policy settings in Windows 11 or the separately available ADMX files,...
Self-service password reset with ManageEngine ADSelfService Plus
security, active directory, password 1
ManageEngine ADSelfService Plus is a fully featured solution to easily implement self-service password reset, SSO, password synchronization, MFA, and...
Find Active Directory accounts configured for DES and RC4 Kerberos encryption
security, active directory, encryption 2
While DES has long been considered insecure, CVE-2022-37966 accelerates the departure of RC4 for the encryption of Kerberos tickets....
The new FSLogix version, which was released in October, introduces a long-awaited feature: VHDX compaction. FSLogix is a standalone...
Many websites ask users whether they want to receive notifications. In managed environments, this feature can be disabled via...
When did users last change their password in Active Directory?
active directory, security, password 0
Changing passwords regularly is no longer recommended, and the Security Baseline for Windows doesn't include a corresponding setting. Nevertheless,...
All Windows administrators need to know the essential concepts of Active Directory passwords: how passwords are stored in Active...
Windows 10 22H2: New Group Policy settings and updated Security Baseline, no ADK
windows, active directory, group policy 0
Microsoft released version 22H2 of Windows 10 (Windows 10 2022 Update). It offers practically no new features for end...
