Tag Archives: AD

FGPP’s & PSO’s – translated: “Yay! More domain password control!”

I’ve previously spoken about security and password managementĀ (if you need a refresher, I’m referring to this post and this post) however I neglected to go into detail regarding one really cool and amazing thing – Fine-Grained Password Policies & Password Setting Objects…and I’ve been promising to write this post for months! I know a lot of this can be found… Read more »

Adding & Removing Domain Controllers – the good, the bad and everything in between!

So, as some of you may be aware, I recently ranĀ a project to upgrade all the Domain Controllers (DC’s) in my organisations Active Directory (AD) environment from a mixture of 2008 R2 & 2012 to 2012 R2. Considering the number of domains/domain controllers involved, this was no simple feat – especially considering I did the entire piece of work myself!… Read more »

Regular AD Maintenance & Checks

I was inspired to write this post based on a question posted on Reddit a little bit ago. While I was happy with my response (and that so many people agreed with me!) I figured it would benefit those who read my blog or go searching for this information and aren’t Reddit readers. I’ve also added in a few links,… Read more »

AD Security & Administration – righting the right rights

DISCLAIMER – This post does make some remarks regarding security settings that sysadmins should be looking at implementing within their organisation. This does not, in any way, reflect current security practices at my current organisation of employment. These issues were raised by Microsoft purely from an awareness perspective and I believed they should be shared with a wider sysadmin audience…. Read more »