Providing the best user experience with a Single-Sign-On (SSO) capability without compromising security is key of successful implementations of federation services. I personally like the ADFS model and SAML (Security Assertion Markup Language) because is robust, effective and suitable from small to large organizations offering an incredible amount of features if it configured/implemented correctly. Continue reading “How to Turn On ADFS Security Auditing with Powershell”
One of the most basic and repetitive tasks for system administrators is certainly unlocking Active Directory user accounts. It’s very easy to underestimate it, in fact, this operation isn’t perceived not just by users, but more importantly by junior engineers not important at all! Frequently providing some general feedback to the user on this issue or simply a response that this issue is now it’s been fixed.
On top of that, I’ve found that in some situation finding the root cause it requires a bit of investigation and experience not just to guess what more likely is causing it and not many of us are willing to take this effort. But I like to explain and document what happened to the user, to me it’s absolutely key to raise the awareness and trust people and processes involved in the IT System. Continue reading “Powershell: Monitoring AD Account Lock-Out Events”
There are many really good tools capable of generating random passwords with different complexity and purposes. Some of them are integrated in password managers, some embedded in the browser others available programmatically from the cli with no need to use an online password generator. Continue reading “PowerShell: Random Password Generator”
This can be considered the least interesting usage of PowerShell and in many ways a source of unwanted interruption, but there are situation where been able to show a toaster or pop-up can be handy.