#AD

  • Wanted: Up and coming Cyber Security Professionals

    Cyber Security — Identity Management Implementer Secure your identities against the dangers of the Cyber World, automate the repetitive, and empower your users! Let’s Shut the front door on the most obvious  vector for Cyber-attacks Reduce the IT department’s compliance burden (SOX, HIPAA, FERPA, GLBA, ISO etc). Free IT people to do tasks that require […]

    Read More
  • Kerberos, FIDO, what’s next?

    In the 1980’s Steve Miller and Clifford Neuman published a new security protocol, called Kerberos, after the mythical three headed dog that guards the gates of Hades. In 2014 the alliance published the FIDO standard. This exciting standard is enabling a passwordless world (yet to come). For example you can use a small USB device […]

    Read More
  • Still an MVP but now DS MVP

    I have been awarded the Microsoft Most Valuable Professional for a 9th time. I started off as an MIIS MVP (even though ILM had been released 4 months previous). Then I became an ILM MVP in 2008, then in 2010 it was FIM MVP (or was that 2011). Now with FIM changing to MIM and […]

    Read More
  • Escaping an AD Replication Island

    On a dark and stormy night an Active Directory upgrade was underway, Windows Server 2003 domain controllers decommissioned, consolidated and replaced with Window Server 2008 R2 servers. Suddenly I got a call from those doing the upgrade, “I can’t see some of the new domain controllers on the existing domain controllers, what’s wrong?” A replication island had been created […]

    Read More
  • What AD Attributes are indexed? ANR? Tuple? PowerShell

    Import-Module ActiveDirectoryWrite-Host “Tuple Index Enabled Attributes”Get-ADObject -SearchBase ((Get-ADRootDSE).schemaNamingContext)  -SearchScope OneLevel -LDAPFilter “(searchFlags:1.2.840.113556.1.4.803:=32)” -Property objectClass, name, whenChanged,  whenCreated, LDAPDisplayNAme  | Out-GridViewWrite-Host “ANR Enabled Attributes”Get-ADObject -SearchBase ((Get-ADRootDSE).schemaNamingContext)  -SearchScope OneLevel -LDAPFilter “(searchFlags:1.2.840.113556.1.4.803:=4)” -Property objectClass, name, whenChanged,  whenCreated, LDAPDisplayNAme | Out-GridViewWrite-Host “Indexed Enabled Attributes”Get-ADObject -SearchBase ((Get-ADRootDSE).schemaNamingContext)  -SearchScope OneLevel -LDAPFilter “(searchFlags:1.2.840.113556.1.4.803:=1)” -Property objectClass, name, whenChanged,  whenCreated, LDAPDisplayNAme  | Out-GridView The […]

    Read More
  • Phoenix MVP Roadshow Transform the DataCenter Wed Sept 24 4 PM-8PM

    Register Now! to attend MVP Roadshow Sept 24th 4 PM – 8PM I will be presenting on why we want to get to Active Directory based on Windows Server 2012 R2 and how to get there. My fellow MVP’s will be covering the rest of the agenda. I also created an IT clue game to play […]

    Read More
  • ADUC Common Queries: Days Since Last Logon

    Recently a client asked me how Active Directory Users and Computers (ADUC) performs the Days Since Last Logon query found in the Find Dialog box’s Common Queries option. LastLogon is not replicated so to really get it you have to query every single DC. So I was reasonably certain that the query didn’t use LastLogon […]

    Read More
  • Happy Independence Day — Using PowerShell for Reporting

    Unfortunately, my Independence day is not free — I am working. Just so happens I need to report on when computer objects are getting migrated to a new AD forest. Day 1 4 Day 2 30 Day 3 25 etc. Now I could have taken the data and imported it into SQL and then busted […]

    Read More
  • Windows 2012 R2 and Windows 8.1 RTM now on MSDN and Technet

    One of my fellow MVPs and Insight teammates Alessandro Cardoso (he runs one of our practices down under) announced on his blog that Windows 2012 R2 and Windows 8.1 RTM now on MSDN and Technet. He goes on to mention the salient points around 2012 R2 for virtualization so I thought I would discuss some […]

    Read More
  • Massive FIM and AD LDS project at DPDHL

    Watch the presentation that James Booth (who worked with us on the project) and Joe Gasowski (DPDHL) gave at the Redmond Identity Summit 2013 about our project at DHL to replace the DPDHL Sun One Directory and deploy FIM to replace both CriticalPath and a home-grown admin portal. http://feeds.feedburner.com/IdentityLifecycleManagerilmBestPractices

    Read More
  • Page 1 of 2