Active Directory is such an important service that in most organisations after being implemented becomes suddenly invisible to the end-user.
In my humble opinion even nowadays learning the fundamentals of Active Directory is very important for most support / technical roles and it will be a valuable skill for at least another decade, cloud technologies, for instance, will not make those skills disappear overnight.
Regardless of the size of the organisation who needs to support the end-user needs to understand well how it works or know how to troubleshoot the most common issues, in this article we will touch again of a very simple event to troubleshoot such the AD Account Lockout.
Continue reading “Active Directory User Account Lockout Troubleshooting”
Creating Service Accounts is an especially tedious process when we need to create a lot of those for different purposes, mainly driven by the least privilege access across environments, projects, deployments or simply different clients. So why don’t improve this? Let’s make it all more fun, efficient and less error-prone, so let’s automate it! Continue reading “How to Create New Service Accounts in Active Directory from a CSV with Powershell”
I thought that RDMan, aka Remote Desktop Connection Manager, fitted perfectly in “A BLAST FROM THE PAST” category of software used back in the day by every System Engineer working on Windows Systems. I was wrong. Believe it or not, it is still strong today!
When you need to manage multiple servers/workstation remotely via RDP(Remote Desktop Protocol) it’s for most professionals the obvious choice. The GUI of the application is straightforward and in most cases or scenarios it’s fit for purpose. Continue reading “How to generate a Remote Desktop Manager (RDMan) group XML for your infrastructure with PowerShell”
Providing the best user experience with a Single-Sign-On (SSO) capability without compromising security is key of successful implementations of federation services. I personally like the ADFS model and SAML (Security Assertion Markup Language) because is robust, effective and suitable from small to large organizations offering an incredible amount of features if it configured/implemented correctly. Continue reading “How to Turn On ADFS Security Auditing with Powershell”
One of the most basic and repetitive tasks for system administrators is certainly unlocking Active Directory user accounts. It’s very easy to underestimate it, in fact, this operation isn’t perceived not just by users, but more importantly by junior engineers not important at all! Frequently providing some general feedback to the user on this issue or simply a response that this issue is now it’s been fixed.
On top of that, I’ve found that in some situation finding the root cause it requires a bit of investigation and experience not just to guess what more likely is causing it and not many of us are willing to take this effort. But I like to explain and document what happened to the user, to me it’s absolutely key to raise the awareness and trust people and processes involved in the IT System. Continue reading “Powershell: Monitoring AD Account Lock-Out Events”