Welcome to TechNet Blogs Sign in | Join | Help

News

  • We're Hiring!

    Locations of visitors to this page

    Disclaimer: All postings are provided "AS IS" with no warranties, and confer no rights. This weblog does not represent the thoughts, intentions, plans or strategies of Microsoft. Because a weblog is intended to provide a semi-permanent point-in-time snapshot, you should not consider out of date posts to reflect current thoughts and opinions.

Browse by Tags

All Tags » Authorization   (RSS)
Default Security Templates in Windows 2008
Hi, David here again. You might be familiar with Security Templates that we use in Windows 2000 and 2003. The template is sort of the master set of security settings that we apply to a server when you either set it up or configure it using the Security Read More...
Posted: Wednesday, May 28, 2008 6:51 PM by NedPyle | 1 Comments
Filed under:
The Security Descriptor Definition Language of Love (Part 2)
Hi. Jim here from DS here with a follow up to my SDDL blog part I. At the end of my last post I promised to dissect further the SDDL output returned by running the CACLS with the /S switch on tools share as follows: Here is the output exported to a .txt Read More...
Posted: Wednesday, May 07, 2008 12:35 PM by NedPyle | 1 Comments
Filed under:
The Security Descriptor Definition Language of Love (Part 1)
Hi. Jim from DS here to tell you more than you ever wanted to know about the Security Descriptor Definition Language (SDDL). Windows uses SDDL in the nTSecurityDescriptor. The SDDL defines string elements for enumerating information contained in the security Read More...
Posted: Friday, April 18, 2008 12:09 PM by NedPyle | 2 Comments
Filed under:
Special Groups Auditing via Group Policy Preferences
Ned here again. Today I’m going to talk about a new feature of Windows Server 2008 and Windows Vista called Special Groups auditing . While we’re in here, I’ll run through how we can use the new Group Policy Preferences (GPP) client-side Read More...
Posted: Tuesday, March 11, 2008 12:43 PM by NedPyle | 2 Comments
Filed under: , , , , ,
Kerberos for the Busy Admin
Hi Rob here, I am a Support Escalation Engineer in Directory Services out of Charlotte, NC, USA. We work a lot of Kerberos authentication failure issues. Since Kerberos is typically the first authentication method attempted, it ends up having authentication Read More...
Posted: Thursday, March 06, 2008 12:27 PM by NedPyle | 9 Comments
Filed under: , ,
Security Policy Settings and User Account Control
Hi, Mike here. This post was originally published in the Group Policy Team blog in September 2006—anticipating the launch of Windows Vista. Here it is again—refreshed—for the upcoming launch of Windows Server 2008. User Account Control Read More...
Posted: Thursday, January 31, 2008 12:50 PM by NedPyle | 1 Comments
Filed under: , , ,
What’s in a Token (Part 2): Impersonation
What’s in a Token (Part 2): Impersonation It’s Randy again. In my last blog post , we discussed that the token is the identification for a process . The token object contains a list of security identifiers, rights and privileges that the Windows Read More...
Posted: Friday, January 11, 2008 11:02 AM by NedPyle | 0 Comments
Filed under:
What's in a Token
Hi, Randy here. This is my first blog post to help explain authentication and authorization. This post will be helpful in understanding "Access is Denied" messages and how to troubleshoot when these happen. I'd like to start with an explanation of the Read More...
Posted: Friday, November 02, 2007 10:28 AM by NedPyle | 5 Comments
Filed under: ,
Page view tracker