There are several ways for Windows PCs to join an Active Directory domain. These include the interactive method via...
Tag Archive for: active directory
4sysops - The online community for SysAdmins and DevOps
ENow Active Directory Monitoring & Reporting

ENow Active Directory Monitoring & Reporting provides quick, granular visibility into your Active Directory environment so IT pros can...
Auditing and restricting NTLM authentication using Group Policy

NTLM is an insecure authentication protocol that is still found in many environments. Using Group Policy and effective logging,...
Retrieve local admin passwords from Active Directory with LAPS WebUI

Microsoft LAPS is a solution for centrally managing passwords for local administrator accounts in an Active Directory domain. It...
How to install Group Policy ADMX templates for OneDrive

When companies use OneDrive, they usually want to control its use via Group Policy to prevent data loss or...
Set Chrome, Firefox and Edge as default mail client (mailto handlers)

To set Chrome, Edge, or Firefox as default mail client for mailto links (mailto handlers) requires several steps. In...
Restrict logon time for Active Directory users

You can restrict logon times for Active Directory users for specific days or hours. This can be useful to...
Show or hide users on the logon screen with Group Policy

By default, the Windows logon screen displays some information about the current user as well as accounts that have...
Prepare AD synchronization with Azure Active Directory using IdFix

Many organizations are migrating their on-premises email to Microsoft 365. One of the necessary steps is synchronizing your local...
Remove an old Windows certificate authority

Let's look at the general steps required to remove an old Windows certificate authority without affecting previously issued certificates.
Find the source of AD account lockouts

In a previous post, we discussed how to quickly unlock AD accounts with PowerShell. However, the main problem admins...
Unlock AD accounts with PowerShell

IT admins or helpdesk teams often use graphical tools, such as Active Directory Users and Computers (ADUC), to unlock...
Download and install ADMX templates for Microsoft Edge

If you take a look at the group policy settings in Windows 11 or the separately available ADMX files,...
Self-service password reset with ManageEngine ADSelfService Plus

ManageEngine ADSelfService Plus is a fully featured solution to easily implement self-service password reset, SSO, password synchronization, MFA, and...
Find Active Directory accounts configured for DES and RC4 Kerberos encryption

While DES has long been considered insecure, CVE-2022-37966 accelerates the departure of RC4 for the encryption of Kerberos tickets....
FSLogix VHDX compaction: Resize virtual disks

The new FSLogix version, which was released in October, introduces a long-awaited feature: VHDX compaction. FSLogix is a standalone...
Block notifications in Chrome, Edge, and Firefox

Many websites ask users whether they want to receive notifications. In managed environments, this feature can be disabled via...
When did users last change their password in Active Directory?

Changing passwords regularly is no longer recommended, and the Security Baseline for Windows doesn't include a corresponding setting. Nevertheless,...
Active Directory passwords: All you need to know

All Windows administrators need to know the essential concepts of Active Directory passwords: how passwords are stored in Active...
Windows 10 22H2: New Group Policy settings and updated Security Baseline, no ADK

Microsoft released version 22H2 of Windows 10 (Windows 10 2022 Update). It offers practically no new features for end...