Blog Archives

Advanced Group Policy for Security – AppLocker

This post will be the first of a series on using Group Policy for Windows Server, Windows Client, and Active Directory Security. Today, we’ll focus on implementation, configuration, and monitoring of AppLocker.   So, what’s AppLocker? AppLocker is Microsoft’s native

Tagged with: , ,
Posted in Group Policy, Security

Operating System Specific Group Automation

Hey everyone. Brad again with a quick post. A couple weeks back I was talking with another engineer and lamenting the fact that computers weren’t automatically placed in Operating System specific groups and that there is not always a great

Posted in Uncategorized

How Time broke AD (and Group Policy saved the day)

I was recently discussing Time Configuration in Active Directory with another engineer and promised to send along details on how I like to configure Domain Controllers. Instead of sending along some links, I decided to add a post to talk

Tagged with: , , ,
Posted in Active Directory, Group Policy, Windows Time

Directory Service Restore Mode password automation

In a previous post (here), I wrote about an automation framework to deploy scripts using GPP Scheduled Tasks to Domain Controllers, servers, and clients. This post is about a script, designed for use with that framework, to set the DSRM

Posted in Active Directory, Disaster Recovery, Scripting

Minimal Server Interface…a better Core for 2012(R2)?

Hello everyone. Today I’ll be talking a little bit about Windows Server Core. Back in the Windows 2008 days, I used to have a couple of Windows Core servers that were primarily tools/utility servers and even ran Openfire on one

Posted in Windows, Windows Core

IPv6 Disabled? – 0xffffffff to 0xff fixup

Like many environments, you may have disabled IPv6 on your workstations and servers. There are plenty of reasons why organization choose to enable or disable this and I won’t go into detail on whether or not you *should* disable IPv6…that’s

Posted in Active Directory, Group Policy, Networking

Distributed Automation using Native Tools and Scripts

For this post, we’ll focusĀ on automation with Windows hosts. Specifically, I’ll be covering a framework that I use to deploy automation to Domain Controllers that can help solve a common problem in Disaster Recovery scenarios. For now, we’ll just call

Posted in Active Directory, Group Policy, Scripting