Reviewing security permissions on file server
Hopefully this is the correct forum for this query I have a top level folder on a file server called IT that has a lot of Groups or user names added over the years. These have Usernames, Domain Users, IT Group, Finance Group, Administrators etc. in the…
Disable weak cipher suits with Windows server 2016 DCs
Hi We have disabled below protocols with all DCs & enabled only TLS 1.2 SSL v2, SSL v3, TLS v1.0, TLS v1.1 We found with SSL Labs documentation & from 3rd parties asking to disable below weak Ciphers RC2 RC4 MD5 3DES DES NULL …
Event ID 4649 (A replay attack was detected)
I am trying to generate Event ID 4649 (A replay attack was detected) for testing purpose. I've tried to use different tools to generate but failed to do so. Can anyone guide me or give me a documentation to generate it?
Windows API InitializeSecurityContext throws 0x80090311 error in a cross domain env
I have a multiple domains environment, here is my setup: Two AD server, one is for domain b1cloud.com, other one is for customer.com Setup the domain trust that b1cloud.com trusts customer.com One windows server (MYMACHINE) join domain b1cloud.com …
Windows Hello for Business and Azure Virtual Desktop / VDI
Hi All, We recently implemented the Microsoft Cloud Hybrid Trust method for Windows Hello for Business, this has left our AAD joined machines able to access On-Premise shares, SQL servers etc using their Windows PIN. The final hurdle for us is…
How do we fix ICMP Timestamp Request Remote Date Disclosure on Windows Server?
I would like to know if there is an effective way to fix the vulnerability "ICMP Timestamp Request Remote Date Disclosure". Any additional recommendations?
how to find restore point creation in system protection tab in win serverv2016
I Cant able to find system protection tab in windows server 2016 OS just need to create a restore point
MS Security compliance baseline Windows 11 23 H2 Login Problems
Hi, I am implementing MS security baseline as highlighted in the following screenshot. After implementing the baseline, I am NOT able to login to the user account. This account is a local account and I was signed in using this local account. Any…
Kindly help to check the oledb driver version
This is Chen from Application team, as required by Infras team, they want to summarize all drivers used by the applications with existing drivers. May i know if you could help on check the driver version of below? thanks~ VL102889.dir.svc.accenture.com
Export of issued certificates from CA
Hi guys, What is the best way (script) to pull out export (whole list or just a count) of all CAs issued certificates, same as that can be done with right-click on Issued Certs and export, from CA windows. Ive tried with certutil -view log to CSV file,…
Using gMSA for replacing the Task Scheduler service account?
What steps should I follow to change the current Task Scheduler service account from using the regular AD Account in the format of CORP\service.account to a gMSA? When I try to change it manually by double-clicking on the task, it prompts for the…
About the price of Windows 2012 and Windows 2012 R2 's ESU(Extended Security Update) support for non Azure system
Want to ask about the price of Windows 2012 and Windows 2012 R2 's ESU(Extended Security Update) support for windows instance which is not on Azure cloud platform
Can't Recieve SMS Code! Why can't i have the code?
Alright, here the problems -How can i verify my identity if i can't even get the SMS Code? -How can i add alternative email if you guys didn't even send the SMS Code? -How can i add another protection meanwhile this whole system telling me to verify my…
Setting up CES and CEP PKI in a trusted forest scenario
I have two domains with a two-way forest trust. I want computer accounts in DomainB to enroll for computer client auth certificates from the two-tier Windows CA in DomainA. I configured a certificate cert template in the issuing CA for this and gave Read…
Microsoft Defender for Identity required licenses and scope?
Before I turn on everything under the Microsoft Defender for Identity from the https://security.microsoft.com/ portal. I wanted to know if I must enable or purchase licenses like Sentinel and Defender ATP or some other licenses I may have missed here.All…
Using a Linux CA as the root for Windows Server Active Directory Certificate Services
I have been looking for some documentation or guidance on using an existing Linux Certificate Authority as the root CA for Windows Server AD CS. Is this possible? If so, anyone have any documentation or white papers on planning and implementing said…
Disable WinRM PowerShell Remoting
Hi All I have a requirement to Disable or Harden PowerShell Remoting and WinRM Services. The impact what i see is one server cannot connect to another server using remote powershell scripts. Please also let me know what possible issues we can come across…
Password incorrect when import certificate on server 2012
Hello, I trying to import a new certificate in server 2012 and says password incorrect, but the passworsd is correct. I have no problems importing this certificate on server 2019. I have seen in some forums that the problem is that 2012 does not…
AD Account lockout cause unknown
An account lockout event code 4740 (User account XXX was locked from computer T00050068-RGB01) has occurred on our network twice for non-essential AD accounts however I do need to find the cause for security purposes. The caller machine name is…
Windows 2019 servers patch failed
windows 2019 servers getting security patch failed and when I tried manual then stuck on 80% then I tried to clear table but again stuck, what is solution and how to fix this issue. we have tried below steps DISM /Online /Cleanup-Image /RestoreHealth …